Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

unable to download programs


  • Please log in to reply
19 replies to this topic

#1 redroset

redroset

  • Members
  • 37 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:California
  • Local time:09:10 AM

Posted 12 February 2015 - 03:16 PM

I can no longer download nor use Adobe Flash, iTunes, nor Java. My computer is old but has worked great until recent problems with these programs/downloads. I need some help to know what the problem is. Thanks



BC AdBot (Login to Remove)

 


#2 hamluis

hamluis

    Moderator


  • Moderator
  • 55,404 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:11:10 AM

Posted 12 February 2015 - 03:33 PM

Please download MiniToolBox  , save it to your desktop and run it.
 
Checkmark the following checkboxes:
  List last 10 Event Viewer log
  List Installed Programs
  List Users, Partitions and Memory size.
 
Click Go and paste the content into your next post.
 
Also...please Publish a Snapshot using Speccy - http://www.bleepingcomputer.com/forums/topic323892.html/page__p__1797792#entry1797792 , taking care to post the link of the snapshot in your next post.
 
Louis



#3 redroset

redroset
  • Topic Starter

  • Members
  • 37 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:California
  • Local time:09:10 AM

Posted 12 February 2015 - 09:58 PM




MiniToolBox by Farbar Version: 30-11-2014
Ran by Linda (administrator) on 12-02-2015 at 14:13:40
Running from "C:\Documents and Settings\Linda\My Documents\Downloads"
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Event log errors: ===============================

Application errors:
==================
Error: (10/14/2014 06:44:11 PM) (Source: crypt32) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: The data is invalid.

Error: (10/14/2014 06:44:10 PM) (Source: crypt32) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: The data is invalid.

Error: (10/09/2014 10:15:56 AM) (Source: ESENT) (User: )
Description: wuaueng.dll (1988) SUS20ClientDataStore: The version store for this instance (0) has reached its maximum size of 8Mb. It is likely that a long-running transaction is preventing cleanup of the version store and causing it to build up in size. Updates will be rejected until the long-running transaction has been completely committed or rolled back.
Possible long-running transaction:
SessionId: 0x024C03C0
Session-context: 0x00000000
Session-context ThreadId: 0x000007C8

Error: (09/10/2014 04:52:27 PM) (Source: ConvertFilesforFree) (User: )
Description: Can't parse JSON update object

Error: (09/10/2014 04:37:20 PM) (Source: ConvertFilesforFree) (User: )
Description: Can't parse JSON update object

Error: (09/10/2014 04:22:06 PM) (Source: ConvertFilesforFree) (User: )
Description: Can't parse JSON update object

Error: (09/10/2014 04:06:57 PM) (Source: ConvertFilesforFree) (User: )
Description: Can't query a value of the remote_log registry value, code: 2

Error: (09/10/2014 04:06:57 PM) (Source: ConvertFilesforFree) (User: )
Description: Can't query a buffer size for the remote_log registry value, code: 2

Error: (09/10/2014 04:06:57 PM) (Source: ConvertFilesforFree) (User: )
Description: Can't query a value of the remote_log registry value, code: 2

Error: (09/10/2014 04:06:56 PM) (Source: ConvertFilesforFree) (User: )
Description: Can't query a buffer size for the remote_log registry value, code: 2

System errors:
=============
Error: (02/12/2015 02:03:00 PM) (Source: Schedule) (User: )
Description: The At3.job command failed to start due to the following error:
%%2147942403

Error: (02/12/2015 02:03:00 PM) (Source: Schedule) (User: )
Description: The At1.job command failed to start due to the following error:
%%2147942403

Error: (02/12/2015 01:03:00 PM) (Source: Schedule) (User: )
Description: The At3.job command failed to start due to the following error:
%%2147942403

Error: (02/12/2015 01:03:00 PM) (Source: Schedule) (User: )
Description: The At1.job command failed to start due to the following error:
%%2147942403

Error: (02/12/2015 00:03:00 PM) (Source: Schedule) (User: )
Description: The At3.job command failed to start due to the following error:
%%2147942403

Error: (02/12/2015 00:03:00 PM) (Source: Schedule) (User: )
Description: The At1.job command failed to start due to the following error:
%%2147942403

Error: (02/12/2015 11:03:02 AM) (Source: Schedule) (User: )
Description: The At3.job command failed to start due to the following error:
%%2147942403

Error: (02/12/2015 11:03:02 AM) (Source: Schedule) (User: )
Description: The At1.job command failed to start due to the following error:
%%2147942403

Error: (02/12/2015 10:25:37 AM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1058

Error: (02/11/2015 11:03:00 PM) (Source: Schedule) (User: )
Description: The At3.job command failed to start due to the following error:
%%2147942403

Microsoft Office Sessions:
=========================
Error: (10/14/2014 06:44:11 PM) (Source: crypt32)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabThe data is invalid.

Error: (10/14/2014 06:44:10 PM) (Source: crypt32)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabThe data is invalid.

Error: (10/09/2014 10:15:56 AM) (Source: ESENT)(User: )
Description: wuaueng.dll1988SUS20ClientDataStore: 080x024C03C00x000000000x000007C8

Error: (09/10/2014 04:52:27 PM) (Source: ConvertFilesforFree)(User: )
Description: Can't parse JSON update object

Error: (09/10/2014 04:37:20 PM) (Source: ConvertFilesforFree)(User: )
Description: Can't parse JSON update object

Error: (09/10/2014 04:22:06 PM) (Source: ConvertFilesforFree)(User: )
Description: Can't parse JSON update object

Error: (09/10/2014 04:06:57 PM) (Source: ConvertFilesforFree)(User: )
Description: Can't query a value of the remote_log registry value, code: 2

Error: (09/10/2014 04:06:57 PM) (Source: ConvertFilesforFree)(User: )
Description: Can't query a buffer size for the remote_log registry value, code: 2

Error: (09/10/2014 04:06:57 PM) (Source: ConvertFilesforFree)(User: )
Description: Can't query a value of the remote_log registry value, code: 2

Error: (09/10/2014 04:06:56 PM) (Source: ConvertFilesforFree)(User: )
Description: Can't query a buffer size for the remote_log registry value, code: 2

=========================== Installed Programs ============================
Adobe AIR (Version: 3.4.0.2540 - Adobe Systems Incorporated) Hidden
Adobe Reader XI (11.0.08) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Amaranthine Voyage: The Tree of Life (HKLM\...\BFG-Amaranthine Voyage - The Tree of Life) (Version: - )
Apple Application Support (32-bit) (HKLM\...\{2FE00055-C4F3-4F7A-AEDD-E198D54CF12F}) (Version: 3.1.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{28ED482A-56DB-47D9-8D9E-990FA8CD7D3D}) (Version: 8.1.0.18 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ATT Management Agent (HKLM\...\ATT-ATT Management Agent) (Version: 8.2.1.6 - ATT)
Big Fish: Game Manager (HKLM\...\BFGC) (Version: 3.3.0.2 - )
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
Brain Training for Dummies (HKLM\...\BFG-Brain Training for Dummies) (Version: - )
Brainiversity (HKLM\...\BFG-Brainiversity) (Version: - )
BVS Solitaire Collection (HKLM\...\BFG-BVS Solitaire Collection) (Version: - )
Chimeras: Tune Of Revenge (HKLM\...\BFG-Chimeras - Tune Of Revenge) (Version: - )
Critical Update for Windows Media Player 11 (KB959772) (HKLM\...\KB959772_WM11) (Version: - Microsoft Corporation)
Dark Parables: The Final Cinderella (HKLM\...\BFG-Dark Parables - The Final Cinderella) (Version: - )
Dark Tales: Edgar Allan Poe's The Gold Bug (HKLM\...\BFG-Dark Tales - Edgar Allan Poe's The Gold Bug) (Version: - )
Dark Tales: Edgar Allan Poe's The Masque of the Red Death (HKLM\...\BFG-Dark Tales - Edgar Allan Poes The Masque of the Red Death) (Version: - )
Dell ResourceCD (HKLM\...\{D78653C3-A8FF-415F-92E6-D774E634FF2D}) (Version: - )
Dreamscapes: Nightmare's Heir (HKLM\...\BFG-Dreamscapes - Nightmare's Heir) (Version: - )
Druid Kingdom (HKLM\...\BFG-Druid Kingdom) (Version: - )
Epson Connect (HKLM\...\{64BA551C-9AF6-495C-93F3-D1270E0045FC}) (Version: - )
Epson Connect Printer Setup (HKLM\...\{D9B1D51B-EB56-410D-AEB5-1CCFAC4B6C8C}) (Version: 1.0.2 - SEIKO EPSON CORPORATION)
Epson Customer Participation (HKLM\...\{814FA673-A085-403C-9545-747FC1495069}) (Version: 1.0.0.0 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM\...\{8ED43F7E-A8F6-4898-AF11-B6158F2EDF94}) (Version: 2.50.0000 - SEIKO EPSON CORPORATION)
EPSON NX430 Series Printer Uninstall (HKLM\...\EPSON NX430 Series) (Version: - SEIKO EPSON Corporation)
EPSON Scan (HKLM\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EpsonNet Print (HKLM\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.4j - SEIKO EPSON CORPORATION)
ESSini (Version: 6.02.1001.0001 - EASTMAN KODAK Company) Hidden
ESSPCD (Version: 6.02.1001.0001 - EASTMAN KODAK Company) Hidden
ESSSONIC (Version: 6.2.0001.0001 - EASTMAN KODAK Company) Hidden
f.lux (HKCU\...\Flux) (Version: - )
Fallen: The Flowers of Evil (HKLM\...\BFG-Fallen - The Flowers of Evil) (Version: - )
FolderSizes 6 (Version: 6.1.76 - Key Metric Software) Hidden
Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.26.9 - Google Inc.) Hidden
Grave Mania: Pandemic Pandemonium (HKLM\...\BFG-Grave Mania - Pandemic Pandemonium) (Version: - )
Heroes from the Past: Joan of Arc (HKLM\...\BFG-Heroes from the Past - Joan of Arc) (Version: - )
Hidden Expedition: Smithsonian Castle Collector's Edition (HKLM\...\BFG-Hidden Expedition - Smithsonian Castle Collector's Edition) (Version: - )
Intel® Extreme Graphics 2 Driver (HKLM\...\{8A708DD8-A5E6-11D4-A706-000629E95E20}) (Version: 6.14.10.4396 - )
Intel® PRO Network Adapters and Drivers (HKLM\...\PROSet) (Version: - )
Itibiti RTC (Version: 0.0.1 - Itibiti Inc) Hidden
iTunes (HKLM\...\{B8032A6B-C4D0-4744-B75F-9DDCB56B5C6F}) (Version: 12.1.0.71 - Apple Inc.)
Java 8 Update 31 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
Java Auto Updater (Version: 2.8.31.13 - Oracle Corporation) Hidden
Ka Kuro Royale (HKLM\...\{1538446A-B130-4049-B004-46D781583724}) (Version: 1.10.0009 - Big Island Publishing)
Ka Kuro Royale (Version: 1.10.0009 - Big Island Publishing) Hidden
kgcbaby (Version: 5.03.0000.0002 - EASTMAN KODAK Company) Hidden
kgcbase (Version: 5.03.0000.0004 - EASTMAN KODAK Company) Hidden
kgchday (Version: 5.03.0000.0002 - EASTMAN KODAK Company) Hidden
kgchlwn (Version: 5.03.0000.0002 - EASTMAN KODAK Company) Hidden
kgcinvt (Version: 5.03.0000.0003 - EASTMAN KODAK Company) Hidden
kgckids (Version: 5.03.0000.0002 - EASTMAN KODAK Company) Hidden
kgcmove (Version: 5.03.0000.0003 - EASTMAN KODAK Company) Hidden
kgcvday (Version: 5.03.0000.0002 - EASTMAN KODAK Company) Hidden
Malwarebytes Anti-Malware version 2.0.4.1028 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Margrave: The Blacksmith's Daughter (HKLM\...\BFG-Margrave - The Blacksmiths Daughter) (Version: - )
Matchmaker: Curse of Deserted Bride (HKLM\...\BFG-Matchmaker - Curse of Deserted Bride) (Version: - )
Mayan Prophecies: Ship of Spirits (HKLM\...\BFG-Mayan Prophecies - Ship of Spirits) (Version: - )
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Base Smart Card Cryptographic Service Provider Package (HKLM\...\KB909520) (Version: - Microsoft Corporation)
Microsoft Compression Client Pack 1.0 for Windows XP (HKLM\...\MSCompPackV1) (Version: 1 - Microsoft Corporation)
Microsoft Internationalized Domain Names Mitigation APIs (Version: - Microsoft Corporation) Hidden
Microsoft National Language Support Downlevel APIs (Version: - Microsoft Corporation) Hidden
Microsoft Office 2000 Premium (HKLM\...\{00000409-78E1-11D2-B60F-006097C998E7}) (Version: 9.00.2720 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft User-Mode Driver Framework Feature Pack 1.0 (HKLM\...\Wudf01000) (Version: - Microsoft Corporation)
Microsoft Visual C Runtime (Version: 8.0.0 - Microsoft) Hidden
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Motor Town: Soul of the Machine (HKLM\...\BFG-Motor Town - Soul of the Machine) (Version: - )
Mozilla Firefox 35.0.1 (x86 en-US) (HKLM\...\Mozilla Firefox 35.0.1 (x86 en-US)) (Version: 35.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSXML 4.0 SP2 (KB936181) (HKLM\...\{C04E32E0-0416-434D-AFB9-6969D703A9EF}) (Version: 4.20.9848.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 6.0 Parser (KB933579) (HKLM\...\{0A869A65-8C94-4F7C-A5C7-972D3C8CED9E}) (Version: 6.10.1200.0 - Microsoft Corporation)
My Kingdom for the Princess (HKLM\...\BFG-My Kingdom for the Princess) (Version: - )
My Kingdom for the Princess IV (HKLM\...\BFG-My Kingdom for the Princess IV) (Version: - )
MyBudgetPlanner (HKLM\...\{12FC1931-EC4C-4884-93EA-7744B238A5B9}) (Version: - )
Mystery Case Files: Dire Grove, Sacred Grove (HKLM\...\BFG-MCF - Dire Grove Sacred Grove) (Version: - )
Nightmare Realm: In the End... (HKLM\...\BFG-Nightmare Realm - In the End) (Version: - )
Notifier (Version: 6.02.0001.0001 - EASTMAN KODAK Company) Hidden
Otherworld: Omens of Summer (HKLM\...\BFG-Otherworld - Omens of Summer) (Version: - )
Outta This Kingdom (HKLM\...\BFG-Outta This Kingdom) (Version: - )
OverDrive Media Console (HKLM\...\{C7239ACC-601B-46BC-B48D-3998303A326D}) (Version: 3.2.1 - OverDrive, Inc.)
Phantasmat: Crucible Peak (HKLM\...\BFG-Phantasmat - Crucible Peak) (Version: - )
PowerDVD 5.1 (HKLM\...\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}) (Version: - )
Push The Box (HKLM\...\BFG-Push The Box) (Version: - )
Queen's Tales: The Beast and the Nightingale (HKLM\...\BFG-Queens Tales - The Beast and the Nightingale) (Version: - )
SHASTA (Version: 6.02.0001.0001 - EASTMAN KODAK Company) Hidden
staticcr (Version: 5.03.0000.0001 - EASTMAN KODAK Company) Hidden
Su Doku Royale (HKLM\...\{F1503245-7BD9-443A-B18D-4400DB736E91}) (Version: - )
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 5.7.1018 - SUPERAntiSpyware.com)
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
The Lake House: Children of Silence (HKLM\...\BFG-The Lake House - Children of Silence) (Version: - )
Timeless: The Lost Castle (HKLM\...\BFG-Timeless - The Lost Castle) (Version: - )
tooltips (Version: 6.02.0001.0001 - EASTMAN KODAK Company) Hidden
Traffic Jam Extreme (HKLM\...\Traffic Jam Extreme) (Version: - )
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (HKLM\...\{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707) (Version: 1 - Microsoft Corporation)
Update for Windows Internet Explorer 7 (KB976749) (Version: 1 - Microsoft Corporation) Hidden
Update for Windows Internet Explorer 7 (KB980182) (Version: 1 - Microsoft Corporation) Hidden
Update for Windows Internet Explorer 8 (KB2598845) (HKLM\...\KB2598845-IE8) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2141007) (HKLM\...\KB2141007) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2345886) (HKLM\...\KB2345886) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2467659) (HKLM\...\KB2467659) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2541763) (HKLM\...\KB2541763) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2607712) (HKLM\...\KB2607712) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2616676) (HKLM\...\KB2616676) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2641690) (HKLM\...\KB2641690) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2661254-v2) (HKLM\...\KB2661254-v2) (Version: 2 - Microsoft Corporation)
Update for Windows XP (KB2718704) (HKLM\...\KB2718704) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2736233) (HKLM\...\KB2736233) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2749655) (HKLM\...\KB2749655) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2863058) (HKLM\...\KB2863058) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2904266) (HKLM\...\KB2904266) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2934207) (HKLM\...\KB2934207) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB951072-v2) (HKLM\...\KB951072-v2) (Version: 2 - Microsoft Corporation)
Update for Windows XP (KB951978) (Version: 1 - Microsoft Corporation) Hidden
Update for Windows XP (KB955759) (HKLM\...\KB955759) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB955839) (HKLM\...\KB955839) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB967715) (HKLM\...\KB967715) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB968389) (HKLM\...\KB968389) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB971029) (HKLM\...\KB971029) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB971737) (HKLM\...\KB971737) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB973687) (HKLM\...\KB973687) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB973815) (HKLM\...\KB973815) (Version: 1 - Microsoft Corporation)
WebFldrs XP (Version: 9.50.6513 - Microsoft Corporation) Hidden
Windows Genuine Advantage Notifications (KB905474) (HKLM\...\WgaNotify) (Version: 1.7.0018.5 - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\KB892130) (Version: - Microsoft Corporation)
Windows Imaging Component (HKLM\...\WIC) (Version: 3.0.0.0 - Microsoft Corporation)
Windows Internet Explorer 7 (Version: 20061107.210142 - Microsoft Corporation) Hidden
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version: - )
Windows Media Format 11 runtime (Version: - Microsoft Corporation) Hidden
Windows Media Player 11 (HKLM\...\Windows Media Player) (Version: - )
Windows Media Player 11 (Version: - Microsoft Corporation) Hidden
Windows PowerShell™ 1.0 (HKLM\...\KB926139-v2) (Version: 2 - Microsoft Corporation)
Windows Resource Kit Tools - SubInAcl.exe (HKLM\...\{D3EE034D-5B92-4A55-AA02-2E6D0A6A96EE}) (Version: 5.2.3790.1164 - Microsoft Corporation)
Windows XP Service Pack 3 (HKLM\...\Windows XP Service Pack) (Version: 20080414.031525 - Microsoft Corporation)
WIRELESS (Version: 6.02.0001.0001 - EASTMAN KODAK Company) Hidden
XML Paper Specification Shared Components Pack 1.0 (Version: - Microsoft Corporation) Hidden
Yahoo! Software Update (HKLM\...\Yahoo! Software Update) (Version: - )

========================= Memory info: ===================================
Percentage of memory in use: 59%
Total physical RAM: 509.98 MB
Available physical RAM: 207.89 MB
Total Pagefile: 1480.5 MB
Available Pagefile: 1074.21 MB
Total Virtual: 2047.88 MB
Available Virtual: 1983.31 MB

========================= Partitions: =====================================
2 Drive c: () (Fixed) (Total:70.07 GB) (Free:25.52 GB) NTFS

========================= Users: ========================================
User accounts for \\

Administrator Guest HelpAssistant
Linda SUPPORT_388945a0 Zen

**** End of log ****


Edited by hamluis, 14 February 2015 - 04:07 PM.


#4 redroset

redroset
  • Topic Starter

  • Members
  • 37 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:California
  • Local time:09:10 AM

Posted 12 February 2015 - 10:00 PM

I sure hope I've done some of the correctly:

http://speccy.piriform.com/results/eDJhYSPC4aXLF37ZIX1CLkr

#5 redroset

redroset
  • Topic Starter

  • Members
  • 37 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:California
  • Local time:09:10 AM

Posted 12 February 2015 - 10:01 PM

Thank you so much, Louis. It would certainly be easier if I was more knowledgeable

#6 hamluis

hamluis

    Moderator


  • Moderator
  • 55,404 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:11:10 AM

Posted 13 February 2015 - 01:23 PM

You are running XP with 512MB RAM..I suspect that's your major problem.  Insufficient resources to do much of anything, IMO.

 

You have no bona fide AV program installed...PC Tools Threatfire is not intended to be a full-fledged AV program from what I read.  This, IMO, makes your system highly vulnerable to malware.

 

Louis



#7 redroset

redroset
  • Topic Starter

  • Members
  • 37 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:California
  • Local time:09:10 AM

Posted 13 February 2015 - 08:48 PM

I run a weekly scan with SUPER AntiSpyware and Malware Bytes - are you saying they are not enough?

It sounds as though I need a new computer!!

Thanks Louis - Linda S.

#8 hamluis

hamluis

    Moderator


  • Moderator
  • 55,404 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:11:10 AM

Posted 14 February 2015 - 04:09 PM

Yes, that's what I or anyone else should say.  Some of your errors reflect adware/malware.

 

Moving topic to Am I Infected where the more knowledgeable can try to assist you.

 

Louis



#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,923 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:10 PM

Posted 14 February 2015 - 10:33 PM

Hello. lets see what other junk we can get off here...

3Al62Pm.pngMiniToolBox
  • Please download MiniToolBox, save it to your desktop and run it.
  • Checkmark the following checkboxes:
    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
SXvL3ZF.pngTDSSKiller
  • Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is required, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
zcMPezJ.pngAdwCleaner
  • Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool. Vista/Windows 7/8 users right-click and select Run As Administrator
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it. If you see an entry you want to keep, let me know about it.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
lv0mVRW.pngJunkware Removal Tool
  • Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
cvMlKv6.pngESET Online Scanner
  • Hold down Control and click on this link to open ESET Online Scanner in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE: Sometimes if ESET finds no infections it will not create a log.
>>>

Edited by boopme, 14 February 2015 - 10:34 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 redroset

redroset
  • Topic Starter

  • Members
  • 37 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:California
  • Local time:09:10 AM

Posted 17 February 2015 - 06:57 PM


I think I copied and pasted AdwCleaner more than once . . . . . . . .


MiniToolBox by Farbar Version: 30-11-2014
Ran by Linda (administrator) on 17-02-2015 at 11:45:56
Running from "C:\Documents and Settings\Linda\My Documents\Downloads"
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================
Windows IP ConfigurationCould not flush the DNS Resolver Cache: Function failed during execution.
========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================




========================= IP Configuration: ================================

Intel® PRO/100 VE Network Connection = Local Area Connection (Connected)


# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Local Area Connection"

set address name="Local Area Connection" source=dhcp
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp


popd
# End of interface IP configuration


Windows IP Configuration Host Name . . . . . . . . . . . . : HOME Primary Dns Suffix . . . . . . . : Node Type . . . . . . . . . . . . : Broadcast IP Routing Enabled. . . . . . . . : No WINS Proxy Enabled. . . . . . . . : No DNS Suffix Search List. . . . . . : attlocal.netEthernet adapter Local Area Connection: Connection-specific DNS Suffix . : attlocal.net Description . . . . . . . . . . . : Intel® PRO/100 VE Network Connection Physical Address. . . . . . . . . : 00-11-11-7A-84-83 Dhcp Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes IP Address. . . . . . . . . . . . : 192.168.1.64 Subnet Mask . . . . . . . . . . . : 255.255.255.0 IP Address. . . . . . . . . . . . : 2602:306:cc3b:abf0:f990:a3f0:7a1c:298e IP Address. . . . . . . . . . . . : 2602:306:cc3b:abf0:211:11ff:fe7a:8483 IP Address. . . . . . . . . . . . : fe80::211:11ff:fe7a:8483%4 Default Gateway . . . . . . . . . : 192.168.1.254 fe80::9662:69ff:fe46:d920%4 DHCP Server . . . . . . . . . . . : 192.168.1.254 DNS Servers . . . . . . . . . . . : 192.168.1.254 fec0:0:0:ffff::1%1 fec0:0:0:ffff::2%1 fec0:0:0:ffff::3%1 Lease Obtained. . . . . . . . . . : Tuesday, February 17, 2015 9:29:45 AM Lease Expires . . . . . . . . . . : Wednesday, February 18, 2015 9:29:45 AMTunnel adapter Teredo Tunneling Pseudo-Interface: Connection-specific DNS Suffix . : Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface Physical Address. . . . . . . . . : FF-FF-FF-FF-FF-FF-FF-FF Dhcp Enabled. . . . . . . . . . . : No IP Address. . . . . . . . . . . . : fe80::ffff:ffff:fffd%5 Default Gateway . . . . . . . . . : NetBIOS over Tcpip. . . . . . . . : DisabledTunnel adapter Automatic Tunneling Pseudo-Interface: Connection-specific DNS Suffix . : attlocal.net Description . . . . . . . . . . . : Automatic Tunneling Pseudo-Interface Physical Address. . . . . . . . . : C0-A8-01-40 Dhcp Enabled. . . . . . . . . . . : No IP Address. . . . . . . . . . . . : fe80::5efe:192.168.1.64%2 Default Gateway . . . . . . . . . : DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1 fec0:0:0:ffff::2%1 fec0:0:0:ffff::3%1 NetBIOS over Tcpip. . . . . . . . : DisabledServer: dsldevice.attlocal.net
Address: 192.168.1.254

Name: google.com
Addresses: 74.125.239.134, 74.125.239.135, 74.125.239.132, 74.125.239.137
74.125.239.131, 74.125.239.133, 74.125.239.129, 74.125.239.136, 74.125.239.130
74.125.239.128, 74.125.239.142

Pinging google.com [2607:f8b0:4005:802::1000] with 32 bytes of data:Reply from 2607:f8b0:4005:802::1000: time=26ms Reply from 2607:f8b0:4005:802::1000: time=26ms Ping statistics for 2607:f8b0:4005:802::1000: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Approximate round trip times in milli-seconds: Minimum = 26ms, Maximum = 26ms, Average = 26msServer: dsldevice.attlocal.net
Address: 192.168.1.254

Name: yahoo.com
Addresses: 98.139.183.24, 98.138.253.109, 206.190.36.45

Pinging yahoo.com [206.190.36.45] with 32 bytes of data:Reply from 206.190.36.45: bytes=32 time=44ms TTL=48Reply from 206.190.36.45: bytes=32 time=44ms TTL=48Ping statistics for 206.190.36.45: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Approximate round trip times in milli-seconds: Minimum = 44ms, Maximum = 44ms, Average = 44msPinging 127.0.0.1 with 32 bytes of data:Reply from 127.0.0.1: bytes=32 time<1ms TTL=128Reply from 127.0.0.1: bytes=32 time<1ms TTL=128Ping statistics for 127.0.0.1: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Approximate round trip times in milli-seconds: Minimum = 0ms, Maximum = 0ms, Average = 0ms===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x10003 ...00 11 11 7a 84 83 ...... Intel® PRO/100 VE Network Connection
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.64 20
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
169.254.0.0 255.255.0.0 192.168.1.64 192.168.1.64 20
192.168.1.0 255.255.255.0 192.168.1.64 192.168.1.64 20
192.168.1.64 255.255.255.255 127.0.0.1 127.0.0.1 20
192.168.1.255 255.255.255.255 192.168.1.64 192.168.1.64 20
224.0.0.0 240.0.0.0 192.168.1.64 192.168.1.64 20
255.255.255.255 255.255.255.255 192.168.1.64 192.168.1.64 1
Default Gateway: 192.168.1.254
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\system32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\WINDOWS\system32\MyOSProtect.dll [304776] (MyOSCompany)
Catalog9 02 C:\WINDOWS\system32\MyOSProtect.dll [304776] (MyOSCompany)
Catalog9 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 17 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 18 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 19 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 20 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 21 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 22 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 23 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 24 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 25 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 26 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 27 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 28 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 29 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 30 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 31 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 32 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 33 C:\WINDOWS\system32\MyOSProtect.dll [304776] (MyOSCompany)

========================= Event log errors: ===============================

Application errors:
==================
Error: (10/14/2014 06:44:11 PM) (Source: crypt32) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: The data is invalid.

Error: (10/14/2014 06:44:10 PM) (Source: crypt32) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: The data is invalid.

Error: (10/09/2014 10:15:56 AM) (Source: ESENT) (User: )
Description: wuaueng.dll (1988) SUS20ClientDataStore: The version store for this instance (0) has reached its maximum size of 8Mb. It is likely that a long-running transaction is preventing cleanup of the version store and causing it to build up in size. Updates will be rejected until the long-running transaction has been completely committed or rolled back.

Possible long-running transaction:

SessionId: 0x024C03C0

Session-context: 0x00000000

Session-context ThreadId: 0x000007C8

Error: (09/10/2014 04:52:27 PM) (Source: ConvertFilesforFree) (User: )
Description: Can't parse JSON update object

Error: (09/10/2014 04:37:20 PM) (Source: ConvertFilesforFree) (User: )
Description: Can't parse JSON update object

Error: (09/10/2014 04:22:06 PM) (Source: ConvertFilesforFree) (User: )
Description: Can't parse JSON update object

Error: (09/10/2014 04:06:57 PM) (Source: ConvertFilesforFree) (User: )
Description: Can't query a value of the remote_log registry value, code: 2

Error: (09/10/2014 04:06:57 PM) (Source: ConvertFilesforFree) (User: )
Description: Can't query a buffer size for the remote_log registry value, code: 2

Error: (09/10/2014 04:06:57 PM) (Source: ConvertFilesforFree) (User: )
Description: Can't query a value of the remote_log registry value, code: 2

Error: (09/10/2014 04:06:56 PM) (Source: ConvertFilesforFree) (User: )
Description: Can't query a buffer size for the remote_log registry value, code: 2


System errors:
=============
Error: (02/17/2015 11:03:00 AM) (Source: Schedule) (User: )
Description: The At3.job command failed to start due to the following error:
%%2147942403

Error: (02/17/2015 11:03:00 AM) (Source: Schedule) (User: )
Description: The At1.job command failed to start due to the following error:
%%2147942403

Error: (02/17/2015 10:03:01 AM) (Source: Schedule) (User: )
Description: The At3.job command failed to start due to the following error:
%%2147942403

Error: (02/17/2015 10:03:01 AM) (Source: Schedule) (User: )
Description: The At1.job command failed to start due to the following error:
%%2147942403

Error: (02/17/2015 09:29:54 AM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1058

Error: (02/16/2015 11:03:00 PM) (Source: Schedule) (User: )
Description: The At3.job command failed to start due to the following error:
%%2147942403

Error: (02/16/2015 11:03:00 PM) (Source: Schedule) (User: )
Description: The At1.job command failed to start due to the following error:
%%2147942403

Error: (02/16/2015 10:03:01 PM) (Source: Schedule) (User: )
Description: The At3.job command failed to start due to the following error:
%%2147942403

Error: (02/16/2015 10:03:01 PM) (Source: Schedule) (User: )
Description: The At1.job command failed to start due to the following error:
%%2147942403

Error: (02/16/2015 09:22:24 PM) (Source: Service Control Manager) (User: )
Description: The ATT MAHostService service terminated with the following error:
%%4294967295


Microsoft Office Sessions:
=========================
Error: (10/14/2014 06:44:11 PM) (Source: crypt32)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabThe data is invalid.

Error: (10/14/2014 06:44:10 PM) (Source: crypt32)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabThe data is invalid.

Error: (10/09/2014 10:15:56 AM) (Source: ESENT)(User: )
Description: wuaueng.dll1988SUS20ClientDataStore: 080x024C03C00x000000000x000007C8

Error: (09/10/2014 04:52:27 PM) (Source: ConvertFilesforFree)(User: )
Description: Can't parse JSON update object

Error: (09/10/2014 04:37:20 PM) (Source: ConvertFilesforFree)(User: )
Description: Can't parse JSON update object

Error: (09/10/2014 04:22:06 PM) (Source: ConvertFilesforFree)(User: )
Description: Can't parse JSON update object

Error: (09/10/2014 04:06:57 PM) (Source: ConvertFilesforFree)(User: )
Description: Can't query a value of the remote_log registry value, code: 2

Error: (09/10/2014 04:06:57 PM) (Source: ConvertFilesforFree)(User: )
Description: Can't query a buffer size for the remote_log registry value, code: 2

Error: (09/10/2014 04:06:57 PM) (Source: ConvertFilesforFree)(User: )
Description: Can't query a value of the remote_log registry value, code: 2

Error: (09/10/2014 04:06:56 PM) (Source: ConvertFilesforFree)(User: )
Description: Can't query a buffer size for the remote_log registry value, code: 2



=========================== Installed Programs ============================
Adobe AIR (Version: 3.4.0.2540 - Adobe Systems Incorporated) Hidden
Adobe Reader XI (11.0.08) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Amaranthine Voyage: The Tree of Life (HKLM\...\BFG-Amaranthine Voyage - The Tree of Life) (Version: - )
Apple Application Support (32-bit) (HKLM\...\{2FE00055-C4F3-4F7A-AEDD-E198D54CF12F}) (Version: 3.1.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{28ED482A-56DB-47D9-8D9E-990FA8CD7D3D}) (Version: 8.1.0.18 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ATT Management Agent (HKLM\...\ATT-ATT Management Agent) (Version: 8.2.1.6 - ATT)
Big Fish: Game Manager (HKLM\...\BFGC) (Version: 3.3.0.2 - )
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
Brain Training for Dummies (HKLM\...\BFG-Brain Training for Dummies) (Version: - )
Brainiversity (HKLM\...\BFG-Brainiversity) (Version: - )
BVS Solitaire Collection (HKLM\...\BFG-BVS Solitaire Collection) (Version: - )
Chimeras: Tune Of Revenge (HKLM\...\BFG-Chimeras - Tune Of Revenge) (Version: - )
Critical Update for Windows Media Player 11 (KB959772) (HKLM\...\KB959772_WM11) (Version: - Microsoft Corporation)
Dark Parables: The Final Cinderella (HKLM\...\BFG-Dark Parables - The Final Cinderella) (Version: - )
Dark Tales: Edgar Allan Poe's The Gold Bug (HKLM\...\BFG-Dark Tales - Edgar Allan Poe's The Gold Bug) (Version: - )
Dark Tales: Edgar Allan Poe's The Masque of the Red Death (HKLM\...\BFG-Dark Tales - Edgar Allan Poes The Masque of the Red Death) (Version: - )
Dell ResourceCD (HKLM\...\{D78653C3-A8FF-415F-92E6-D774E634FF2D}) (Version: - )
Dreamscapes: Nightmare's Heir (HKLM\...\BFG-Dreamscapes - Nightmare's Heir) (Version: - )
Druid Kingdom (HKLM\...\BFG-Druid Kingdom) (Version: - )
Epson Connect (HKLM\...\{64BA551C-9AF6-495C-93F3-D1270E0045FC}) (Version: - )
Epson Connect Printer Setup (HKLM\...\{D9B1D51B-EB56-410D-AEB5-1CCFAC4B6C8C}) (Version: 1.0.2 - SEIKO EPSON CORPORATION)
Epson Customer Participation (HKLM\...\{814FA673-A085-403C-9545-747FC1495069}) (Version: 1.0.0.0 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM\...\{8ED43F7E-A8F6-4898-AF11-B6158F2EDF94}) (Version: 2.50.0000 - SEIKO EPSON CORPORATION)
EPSON NX430 Series Printer Uninstall (HKLM\...\EPSON NX430 Series) (Version: - SEIKO EPSON Corporation)
EPSON Scan (HKLM\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EpsonNet Print (HKLM\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.4j - SEIKO EPSON CORPORATION)
ESSini (Version: 6.02.1001.0001 - EASTMAN KODAK Company) Hidden
ESSPCD (Version: 6.02.1001.0001 - EASTMAN KODAK Company) Hidden
ESSSONIC (Version: 6.2.0001.0001 - EASTMAN KODAK Company) Hidden
f.lux (HKCU\...\Flux) (Version: - )
Fallen: The Flowers of Evil (HKLM\...\BFG-Fallen - The Flowers of Evil) (Version: - )
FolderSizes 6 (Version: 6.1.76 - Key Metric Software) Hidden
Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.26.9 - Google Inc.) Hidden
Grave Mania: Pandemic Pandemonium (HKLM\...\BFG-Grave Mania - Pandemic Pandemonium) (Version: - )
Heroes from the Past: Joan of Arc (HKLM\...\BFG-Heroes from the Past - Joan of Arc) (Version: - )
Hidden Expedition: Smithsonian Castle Collector's Edition (HKLM\...\BFG-Hidden Expedition - Smithsonian Castle Collector's Edition) (Version: - )
Intel® Extreme Graphics 2 Driver (HKLM\...\{8A708DD8-A5E6-11D4-A706-000629E95E20}) (Version: 6.14.10.4396 - )
Intel® PRO Network Adapters and Drivers (HKLM\...\PROSet) (Version: - )
Itibiti RTC (Version: 0.0.1 - Itibiti Inc) Hidden
iTunes (HKLM\...\{B8032A6B-C4D0-4744-B75F-9DDCB56B5C6F}) (Version: 12.1.0.71 - Apple Inc.)
Java 8 Update 31 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
Java Auto Updater (Version: 2.8.31.13 - Oracle Corporation) Hidden
Ka Kuro Royale (HKLM\...\{1538446A-B130-4049-B004-46D781583724}) (Version: 1.10.0009 - Big Island Publishing)
Ka Kuro Royale (Version: 1.10.0009 - Big Island Publishing) Hidden
kgcbaby (Version: 5.03.0000.0002 - EASTMAN KODAK Company) Hidden
kgcbase (Version: 5.03.0000.0004 - EASTMAN KODAK Company) Hidden
kgchday (Version: 5.03.0000.0002 - EASTMAN KODAK Company) Hidden
kgchlwn (Version: 5.03.0000.0002 - EASTMAN KODAK Company) Hidden
kgcinvt (Version: 5.03.0000.0003 - EASTMAN KODAK Company) Hidden
kgckids (Version: 5.03.0000.0002 - EASTMAN KODAK Company) Hidden
kgcmove (Version: 5.03.0000.0003 - EASTMAN KODAK Company) Hidden
kgcvday (Version: 5.03.0000.0002 - EASTMAN KODAK Company) Hidden
Malwarebytes Anti-Malware version 2.0.4.1028 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Margrave: The Blacksmith's Daughter (HKLM\...\BFG-Margrave - The Blacksmiths Daughter) (Version: - )
Matchmaker: Curse of Deserted Bride (HKLM\...\BFG-Matchmaker - Curse of Deserted Bride) (Version: - )
Mayan Prophecies: Ship of Spirits (HKLM\...\BFG-Mayan Prophecies - Ship of Spirits) (Version: - )
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Base Smart Card Cryptographic Service Provider Package (HKLM\...\KB909520) (Version: - Microsoft Corporation)
Microsoft Compression Client Pack 1.0 for Windows XP (HKLM\...\MSCompPackV1) (Version: 1 - Microsoft Corporation)
Microsoft Internationalized Domain Names Mitigation APIs (Version: - Microsoft Corporation) Hidden
Microsoft National Language Support Downlevel APIs (Version: - Microsoft Corporation) Hidden
Microsoft Office 2000 Premium (HKLM\...\{00000409-78E1-11D2-B60F-006097C998E7}) (Version: 9.00.2720 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft User-Mode Driver Framework Feature Pack 1.0 (HKLM\...\Wudf01000) (Version: - Microsoft Corporation)
Microsoft Visual C Runtime (Version: 8.0.0 - Microsoft) Hidden
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Motor Town: Soul of the Machine (HKLM\...\BFG-Motor Town - Soul of the Machine) (Version: - )
Mozilla Firefox 35.0.1 (x86 en-US) (HKLM\...\Mozilla Firefox 35.0.1 (x86 en-US)) (Version: 35.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSXML 4.0 SP2 (KB936181) (HKLM\...\{C04E32E0-0416-434D-AFB9-6969D703A9EF}) (Version: 4.20.9848.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 6.0 Parser (KB933579) (HKLM\...\{0A869A65-8C94-4F7C-A5C7-972D3C8CED9E}) (Version: 6.10.1200.0 - Microsoft Corporation)
My Kingdom for the Princess (HKLM\...\BFG-My Kingdom for the Princess) (Version: - )
My Kingdom for the Princess IV (HKLM\...\BFG-My Kingdom for the Princess IV) (Version: - )
MyBudgetPlanner (HKLM\...\{12FC1931-EC4C-4884-93EA-7744B238A5B9}) (Version: - )
Mystery Case Files: Dire Grove, Sacred Grove (HKLM\...\BFG-MCF - Dire Grove Sacred Grove) (Version: - )
Nightmare Realm: In the End... (HKLM\...\BFG-Nightmare Realm - In the End) (Version: - )
Notifier (Version: 6.02.0001.0001 - EASTMAN KODAK Company) Hidden
Otherworld: Omens of Summer (HKLM\...\BFG-Otherworld - Omens of Summer) (Version: - )
Outta This Kingdom (HKLM\...\BFG-Outta This Kingdom) (Version: - )
OverDrive Media Console (HKLM\...\{C7239ACC-601B-46BC-B48D-3998303A326D}) (Version: 3.2.1 - OverDrive, Inc.)
Phantasmat: Crucible Peak (HKLM\...\BFG-Phantasmat - Crucible Peak) (Version: - )
PowerDVD 5.1 (HKLM\...\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}) (Version: - )
Push The Box (HKLM\...\BFG-Push The Box) (Version: - )
Queen's Tales: The Beast and the Nightingale (HKLM\...\BFG-Queens Tales - The Beast and the Nightingale) (Version: - )
SHASTA (Version: 6.02.0001.0001 - EASTMAN KODAK Company) Hidden
Sophos Virus Removal Tool (HKLM\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.5.4 - Sophos Limited)
Speccy (HKLM\...\Speccy) (Version: 1.28 - Piriform)
staticcr (Version: 5.03.0000.0001 - EASTMAN KODAK Company) Hidden
Su Doku Royale (HKLM\...\{F1503245-7BD9-443A-B18D-4400DB736E91}) (Version: - )
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 5.7.1018 - SUPERAntiSpyware.com)
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
The Lake House: Children of Silence (HKLM\...\BFG-The Lake House - Children of Silence) (Version: - )
Timeless: The Lost Castle (HKLM\...\BFG-Timeless - The Lost Castle) (Version: - )
tooltips (Version: 6.02.0001.0001 - EASTMAN KODAK Company) Hidden
Traffic Jam Extreme (HKLM\...\Traffic Jam Extreme) (Version: - )
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (HKLM\...\{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707) (Version: 1 - Microsoft Corporation)
Update for Windows Internet Explorer 7 (KB976749) (Version: 1 - Microsoft Corporation) Hidden
Update for Windows Internet Explorer 7 (KB980182) (Version: 1 - Microsoft Corporation) Hidden
Update for Windows Internet Explorer 8 (KB2598845) (HKLM\...\KB2598845-IE8) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2141007) (HKLM\...\KB2141007) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2345886) (HKLM\...\KB2345886) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2467659) (HKLM\...\KB2467659) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2541763) (HKLM\...\KB2541763) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2607712) (HKLM\...\KB2607712) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2616676) (HKLM\...\KB2616676) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2641690) (HKLM\...\KB2641690) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2661254-v2) (HKLM\...\KB2661254-v2) (Version: 2 - Microsoft Corporation)
Update for Windows XP (KB2718704) (HKLM\...\KB2718704) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2736233) (HKLM\...\KB2736233) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2749655) (HKLM\...\KB2749655) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2863058) (HKLM\...\KB2863058) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2904266) (HKLM\...\KB2904266) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2934207) (HKLM\...\KB2934207) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB951072-v2) (HKLM\...\KB951072-v2) (Version: 2 - Microsoft Corporation)
Update for Windows XP (KB951978) (Version: 1 - Microsoft Corporation) Hidden
Update for Windows XP (KB955759) (HKLM\...\KB955759) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB955839) (HKLM\...\KB955839) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB967715) (HKLM\...\KB967715) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB968389) (HKLM\...\KB968389) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB971029) (HKLM\...\KB971029) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB971737) (HKLM\...\KB971737) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB973687) (HKLM\...\KB973687) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB973815) (HKLM\...\KB973815) (Version: 1 - Microsoft Corporation)
WebFldrs XP (Version: 9.50.6513 - Microsoft Corporation) Hidden
Windows Genuine Advantage Notifications (KB905474) (HKLM\...\WgaNotify) (Version: 1.7.0018.5 - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\KB892130) (Version: - Microsoft Corporation)
Windows Imaging Component (HKLM\...\WIC) (Version: 3.0.0.0 - Microsoft Corporation)
Windows Internet Explorer 7 (Version: 20061107.210142 - Microsoft Corporation) Hidden
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version: - )
Windows Media Format 11 runtime (Version: - Microsoft Corporation) Hidden
Windows Media Player 11 (HKLM\...\Windows Media Player) (Version: - )
Windows Media Player 11 (Version: - Microsoft Corporation) Hidden
Windows PowerShell™ 1.0 (HKLM\...\KB926139-v2) (Version: 2 - Microsoft Corporation)
Windows Resource Kit Tools - SubInAcl.exe (HKLM\...\{D3EE034D-5B92-4A55-AA02-2E6D0A6A96EE}) (Version: 5.2.3790.1164 - Microsoft Corporation)
Windows XP Service Pack 3 (HKLM\...\Windows XP Service Pack) (Version: 20080414.031525 - Microsoft Corporation)
WIRELESS (Version: 6.02.0001.0001 - EASTMAN KODAK Company) Hidden
XML Paper Specification Shared Components Pack 1.0 (Version: - Microsoft Corporation) Hidden
Yahoo! Software Update (HKLM\...\Yahoo! Software Update) (Version: - )

========================= Memory info: ===================================

Percentage of memory in use: 31%
Total physical RAM: 509.98 MB
Available physical RAM: 348.2 MB
Total Pagefile: 1480.5 MB
Available Pagefile: 1231 MB
Total Virtual: 2047.88 MB
Available Virtual: 1957.09 MB

========================= Partitions: =====================================

2 Drive c: () (Fixed) (Total:70.07 GB) (Free:25.19 GB) NTFS

========================= Users: ========================================

User accounts for \\

Administrator Guest HelpAssistant
Linda SUPPORT_388945a0 Zen


**** End of log ****





15:38:15.0375 0x0d38 TDSS rootkit removing tool 3.0.0.44 Jan 22 2015 08:27:04
15:38:20.0484 0x0d38 ============================================================
15:38:20.0484 0x0d38 Current date / time: 2015/02/17 15:38:20.0484
15:38:20.0484 0x0d38 SystemInfo:
15:38:20.0484 0x0d38
15:38:20.0484 0x0d38 OS Version: 5.1.2600 ServicePack: 3.0
15:38:20.0484 0x0d38 Product type: Workstation
15:38:20.0484 0x0d38 ComputerName: HOME
15:38:20.0484 0x0d38 UserName: Linda
15:38:20.0484 0x0d38 Windows directory: C:\WINDOWS
15:38:20.0484 0x0d38 System windows directory: C:\WINDOWS
15:38:20.0484 0x0d38 Processor architecture: Intel x86
15:38:20.0484 0x0d38 Number of processors: 1
15:38:20.0484 0x0d38 Page size: 0x1000
15:38:20.0484 0x0d38 Boot type: Normal boot
15:38:20.0484 0x0d38 ============================================================
15:38:25.0609 0x0d38 KLMD registered as C:\WINDOWS\system32\drivers\45013593.sys
15:38:25.0875 0x0d38 System UUID: {6C4FEAAB-8917-4816-424E-7BA04A794407}
15:38:26.0984 0x0d38 Drive \Device\Harddisk0\DR0 - Size: 0x12A05F2000 ( 74.51 Gb ), SectorSize: 0x200, Cylinders: 0x25FE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
15:38:27.0031 0x0d38 ============================================================
15:38:27.0031 0x0d38 \Device\Harddisk0\DR0:
15:38:27.0031 0x0d38 MBR partitions:
15:38:27.0031 0x0d38 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x8C239BC
15:38:27.0031 0x0d38 ============================================================
15:38:27.0171 0x0d38 C: <-> \Device\Harddisk0\DR0\Partition1
15:38:27.0203 0x0d38 ============================================================
15:38:27.0203 0x0d38 Initialize success
15:38:27.0203 0x0d38 ============================================================
15:38:30.0000 0x0e80 ============================================================
15:38:30.0000 0x0e80 Scan started
15:38:30.0000 0x0e80 Mode: Manual;
15:38:30.0000 0x0e80 ============================================================
15:38:30.0000 0x0e80 KSN ping started
15:38:30.0984 0x0e80 KSN ping finished: true
15:38:33.0718 0x0e80 ================ Scan system memory ========================
15:38:33.0734 0x0e80 System memory - ok
15:38:33.0734 0x0e80 ================ Scan services =============================
15:38:33.0859 0x0e80 [ 72D6D8E2D4F82C6E829125C7EC2A88F9, F357CFC3D04EB3F8E1A504D531D099698C6E2B29EB6CEDF75C08BF8917C46573 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
15:38:33.0859 0x0e80 !SASCORE - ok
15:38:34.0078 0x0e80 [ C07D5197410AAB28D0D93F943F59656D, 482164BA2B57C7026A7DF3213E0AC59B752A898D9B880BC0629F9CADD05D2894 ] 6to4 C:\WINDOWS\System32\6to4svc.dll
15:38:34.0078 0x0e80 6to4 - ok
15:38:34.0093 0x0e80 Abiosdsk - ok
15:38:34.0109 0x0e80 abp480n5 - ok
15:38:34.0156 0x0e80 [ 8FD99680A539792A30E97944FDAECF17, 594F8E0C3695400B0C09A797AF6BDFAC6F750ECD67D0EE803914C572B1DCC43C ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
15:38:34.0171 0x0e80 ACPI - ok
15:38:34.0203 0x0e80 [ 9859C0F6936E723E4892D7141B1327D5, 5E8F6A2FC4DF2E5E92A1D66ECC2810E08B42B64E9CD0DF4AD3F78EA8558B90AF ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
15:38:34.0203 0x0e80 ACPIEC - ok
15:38:34.0234 0x0e80 adpu160m - ok
15:38:34.0234 0x0e80 aeaudio - ok
15:38:34.0265 0x0e80 [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] aec C:\WINDOWS\system32\drivers\aec.sys
15:38:34.0265 0x0e80 aec - ok
15:38:34.0312 0x0e80 [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] AFD C:\WINDOWS\System32\drivers\afd.sys
15:38:34.0328 0x0e80 AFD - ok
15:38:34.0328 0x0e80 Aha154x - ok
15:38:34.0343 0x0e80 aic78u2 - ok
15:38:34.0359 0x0e80 aic78xx - ok
15:38:34.0421 0x0e80 [ A9A3DAA780CA6C9671A19D52456705B4, 67C959144B57AE0BBF1D82DBED197F32CDB06FECD883A80C441A0202FE83FAB4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
15:38:34.0421 0x0e80 Alerter - ok
15:38:34.0437 0x0e80 [ 8C515081584A38AA007909CD02020B3D, A5E13CA10F702928E0DE84C74D0EA8ACCB117FD76FBABC55220C75C4FFD596DC ] ALG C:\WINDOWS\System32\alg.exe
15:38:34.0453 0x0e80 ALG - ok
15:38:34.0453 0x0e80 AliIde - ok
15:38:34.0468 0x0e80 amsint - ok
15:38:34.0609 0x0e80 [ D2B87FC03BE28CD0B33C2B5C1119FD8E, 97EB74CB7F62C0D06D45CB250E3A90657A0F107C2FC20738FF6B2C87B0240080 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:38:34.0625 0x0e80 Apple Mobile Device - ok
15:38:34.0640 0x0e80 AppMgmt - ok
15:38:34.0671 0x0e80 asc - ok
15:38:34.0687 0x0e80 asc3350p - ok
15:38:34.0703 0x0e80 asc3550 - ok
15:38:34.0781 0x0e80 [ 0E5E4957549056E2BF2C49F4F6B601AD, F7F19FDC906B719A3516D30A9B4A2262C8CC5B36B94E3D4195C345EC4610FF2B ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
15:38:34.0828 0x0e80 aspnet_state - ok
15:38:34.0859 0x0e80 [ B153AFFAC761E7F5FCFA822B9C4E97BC, 7E60F572A6B3C6219E3C86225AA37243AFFD74337DB7F108B04778042E5CC959 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
15:38:34.0859 0x0e80 AsyncMac - ok
15:38:34.0890 0x0e80 [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
15:38:34.0890 0x0e80 atapi - ok
15:38:34.0906 0x0e80 Atdisk - ok
15:38:34.0937 0x0e80 [ 9916C1225104BA14794209CFA8012159, 5D6F05F715C52A16D05CAE15C3DFE77A139A7F27F7AE710EC9A10F9EE05115A1 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
15:38:34.0953 0x0e80 Atmarpc - ok
15:38:35.0062 0x0e80 [ 93E6F56D9FD244B76B973CEDFB427765, B45884B916A40FF420D788AE154C8BF35FD9FC0FA6C897D63F776307C8C2B049 ] ATT MAHostService C:\Program Files\ATT\8.2.1.6\ma\bin\MAHostService.exe
15:38:35.0140 0x0e80 ATT MAHostService - ok
15:38:35.0171 0x0e80 [ DEF7A7882BEC100FE0B2CE2549188F9D, 462C95B63D0A1058291A2DC8CBFCB13D7D74CCD1CA43B613A7EB43D49E3276F8 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
15:38:35.0171 0x0e80 AudioSrv - ok
15:38:35.0218 0x0e80 [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
15:38:35.0218 0x0e80 audstub - ok
15:38:35.0250 0x0e80 [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep C:\WINDOWS\system32\drivers\Beep.sys
15:38:35.0250 0x0e80 Beep - ok
15:38:35.0312 0x0e80 [ 574738F61FCA2935F5265DC4E5691314, 3C7CCF064397186C3A3863DD2370AB6414A61B330097DCA4F299CA7BBAA3D1B4 ] BITS C:\WINDOWS\system32\qmgr.dll
15:38:35.0671 0x0e80 BITS - ok
15:38:35.0765 0x0e80 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
15:38:35.0796 0x0e80 Bonjour Service - ok
15:38:35.0828 0x0e80 [ CFD4E51402DA9838B5A04AE680AF54A0, 5378F42B195B5832B00A05AD64E00473A45FFB86AC25C57241F26EA82B149FE1 ] Browser C:\WINDOWS\System32\browser.dll
15:38:35.0828 0x0e80 Browser - ok
15:38:35.0859 0x0e80 [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
15:38:35.0859 0x0e80 cbidf2k - ok
15:38:35.0875 0x0e80 cd20xrnt - ok
15:38:35.0921 0x0e80 [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
15:38:35.0921 0x0e80 Cdaudio - ok
15:38:35.0937 0x0e80 [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
15:38:35.0937 0x0e80 Cdfs - ok
15:38:35.0968 0x0e80 [ 1F4260CC5B42272D71F79E570A27A4FE, B51C2A3ED3C309953D0EA45869C8E464C10F2533DADE9E0286AF674979098D1D ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
15:38:35.0984 0x0e80 Cdrom - ok
15:38:35.0984 0x0e80 Changer - ok
15:38:36.0015 0x0e80 [ 1CFE720EB8D93A7158A4EBC3AB178BDE, 65D2A9D9A88F38D4AF323134C151BA0F4B3CD0F6A134AF86E7AC9D07319F1726 ] CiSvc C:\WINDOWS\system32\cisvc.exe
15:38:36.0031 0x0e80 CiSvc - ok
15:38:36.0046 0x0e80 [ 34CBE729F38138217F9C80212A2A0C82, A9FD7A758D12E0818A11BEEF1CE772FEFA8373E92EF6C0DA8628CD4572CC9A43 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
15:38:36.0046 0x0e80 ClipSrv - ok
15:38:36.0093 0x0e80 [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:38:36.0250 0x0e80 clr_optimization_v2.0.50727_32 - ok
15:38:36.0250 0x0e80 CmdIde - ok
15:38:36.0281 0x0e80 COMSysApp - ok
15:38:36.0296 0x0e80 Cpqarray - ok
15:38:36.0593 0x0e80 cpuz135 - ok
15:38:36.0671 0x0e80 [ 3D4E199942E29207970E04315D02AD3B, 0825960894CF9C86CC8775BDD2A262948A09CA495AA7FE9F210FAF49E7086383 ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
15:38:36.0671 0x0e80 CryptSvc - ok
15:38:36.0687 0x0e80 dac2w2k - ok
15:38:36.0703 0x0e80 dac960nt - ok
15:38:36.0750 0x0e80 [ 6B27A5C03DFB94B4245739065431322C, 6AEAC16AB4E0DFD25123AAF4D4181FEE1B919B7B2793117006CE8CF30E826CFD ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
15:38:36.0781 0x0e80 DcomLaunch - ok
15:38:36.0812 0x0e80 [ 5E38D7684A49CACFB752B046357E0589, F192AD4190BCFB6939A5CBC91648FE63168AF79A5E227A111DEAD6A92E42AB8D ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
15:38:36.0828 0x0e80 Dhcp - ok
15:38:36.0843 0x0e80 [ 044452051F3E02E7963599FC8F4F3E25, 584BDDB074618BE76454CF90E74829CFF588B5B5FAEB793E2F7AAD26352DD689 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
15:38:36.0843 0x0e80 Disk - ok
15:38:36.0859 0x0e80 dmadmin - ok
15:38:36.0921 0x0e80 [ D992FE1274BDE0F84AD826ACAE022A41, C82BD6561A14F2932A761F5883A787B99031250EE5E9B7B5714AA045545C9B99 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
15:38:36.0953 0x0e80 dmboot - ok
15:38:36.0984 0x0e80 [ 7C824CF7BBDE77D95C08005717A95F6F, A73CB323B7A6410C3D3F258BF204E716ADF8C84C9E4F6562C57AB73DAED8CCDE ] dmio C:\WINDOWS\system32\drivers\dmio.sys
15:38:36.0984 0x0e80 dmio - ok
15:38:37.0015 0x0e80 [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload C:\WINDOWS\system32\drivers\dmload.sys
15:38:37.0015 0x0e80 dmload - ok
15:38:37.0046 0x0e80 [ 57EDEC2E5F59F0335E92F35184BC8631, 61F6F0DC2D1A6C61D5EF0D5CC4BE0FFC217F1E61FDA3EA9F704709293656600F ] dmserver C:\WINDOWS\System32\dmserver.dll
15:38:37.0062 0x0e80 dmserver - ok
15:38:37.0078 0x0e80 [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
15:38:37.0093 0x0e80 DMusic - ok
15:38:37.0125 0x0e80 [ 5F7E24FA9EAB896051FFB87F840730D2, 356EEFDCD54DECAD0170B34B993E4BF80DD039E2B2922D7A8D09B84031E9FC7A ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
15:38:37.0125 0x0e80 Dnscache - ok
15:38:37.0171 0x0e80 [ 0F0F6E687E5E15579EF4DA8DD6945814, 5C32D88119EB1465B2D719BEE2E05888D1A73454B5E33F2D4928DA710F8BFBA3 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
15:38:37.0171 0x0e80 Dot3svc - ok
15:38:37.0171 0x0e80 dpti2o - ok
15:38:37.0218 0x0e80 [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
15:38:37.0218 0x0e80 drmkaud - ok
15:38:37.0265 0x0e80 [ 7D91DC6342248369F94D6EBA0CF42E99, 3A0B94862AF1E085F1FD9B8B96FC1F7BD6FF00342AC04D697AB65BC686F7BC2F ] E100B C:\WINDOWS\system32\DRIVERS\e100b325.sys
15:38:37.0265 0x0e80 E100B - ok
15:38:37.0296 0x0e80 [ 2187855A7703ADEF0CEF9EE4285182CC, 8233CC11F637866C0074043835A785EA2B616739B6B1181B143A253CF2508CFD ] EapHost C:\WINDOWS\System32\eapsvc.dll
15:38:37.0312 0x0e80 EapHost - ok
15:38:37.0421 0x0e80 [ ABDD5AD016AFFD34AD40E944CE94BF59, 61089124CD8FEA31142CD4D3C47224A6310B9BE7B7FA974956D9EDDAD4381503 ] EpsonBidirectionalService C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe
15:38:37.0421 0x0e80 EpsonBidirectionalService - ok
15:38:37.0531 0x0e80 [ B78436CA173FF723A1EACE5CD4900375, 6B80EAD3111FB0A48AFF35C07F0FF7BEDDF1E34200EFC599B8E92CEE4B372736 ] EpsonCustomerParticipation C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe
15:38:37.0593 0x0e80 EpsonCustomerParticipation - ok
15:38:37.0656 0x0e80 [ BC93B4A066477954555966D77FEC9ECB, 27F5B780175EF46DA102EE33F7F33559C8B40C077EEA4405D579D9507F4B1C23 ] ERSvc C:\WINDOWS\System32\ersvc.dll
15:38:37.0656 0x0e80 ERSvc - ok
15:38:37.0703 0x0e80 [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] Eventlog C:\WINDOWS\system32\services.exe
15:38:37.0718 0x0e80 Eventlog - ok
15:38:37.0781 0x0e80 [ D4991D98F2DB73C60D042F1AEF79EFAE, 58AF949EAEBF4FF3E3314DFB66CE4198BF65F0836B68CD27A6ED319742CCCCD2 ] EventSystem C:\WINDOWS\system32\Es.dll
15:38:37.0781 0x0e80 EventSystem - ok
15:38:37.0812 0x0e80 [ 38D332A6D56AF32635675F132548343E, E6909DB836AF679B4F4D62C7396D6C82769CC7ABB8C919C2AABFE934FCE268F6 ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
15:38:37.0812 0x0e80 Fastfat - ok
15:38:37.0859 0x0e80 [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
15:38:37.0859 0x0e80 FastUserSwitchingCompatibility - ok
15:38:37.0890 0x0e80 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
15:38:37.0890 0x0e80 Fdc - ok
15:38:37.0921 0x0e80 [ D45926117EB9FA946A6AF572FBE1CAA3, 4C94EF009D778BE0BDF8F812F026B96F91F641BE30AA2531427A5E63DBD280DA ] Fips C:\WINDOWS\system32\drivers\Fips.sys
15:38:37.0921 0x0e80 Fips - ok
15:38:37.0937 0x0e80 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
15:38:37.0937 0x0e80 Flpydisk - ok
15:38:37.0968 0x0e80 [ B2CF4B0786F8212CB92ED2B50C6DB6B0, 280F5CF8A90F7BEDE73ADD0DD0F8952088133A7CA9A3D3B7041957E33B36845D ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
15:38:37.0968 0x0e80 FltMgr - ok
15:38:38.0046 0x0e80 [ 8BA7C024070F2B7FDD98ED8A4BA41789, 47585006F86B2C6016EC54250A416794792D1E4024FF229C120BC25B684AF66A ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
15:38:38.0046 0x0e80 FontCache3.0.0.0 - ok
15:38:38.0078 0x0e80 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
15:38:38.0093 0x0e80 Fs_Rec - ok
15:38:38.0109 0x0e80 [ 6AC26732762483366C3969C9E4D2259D, FF2C9A23CC17F380093F0BEA955B1925794271C2FEA16B9B7639668E6999BAE3 ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
15:38:38.0109 0x0e80 Ftdisk - ok
15:38:38.0156 0x0e80 [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
15:38:38.0171 0x0e80 GEARAspiWDM - ok
15:38:38.0218 0x0e80 [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
15:38:38.0218 0x0e80 Gpc - ok
15:38:38.0296 0x0e80 [ 51508F0C2476177E50C31B0BBFBF1BDB, 3F62A05181D54711180C8727AC66D624AFA7FC816A4ACC4DC0CFCF2D2DBE7F87 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
15:38:38.0296 0x0e80 gupdate - ok
15:38:38.0328 0x0e80 [ 51508F0C2476177E50C31B0BBFBF1BDB, 3F62A05181D54711180C8727AC66D624AFA7FC816A4ACC4DC0CFCF2D2DBE7F87 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
15:38:38.0328 0x0e80 gupdatem - ok
15:38:38.0375 0x0e80 [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
15:38:38.0421 0x0e80 gusvc - ok
15:38:38.0484 0x0e80 [ 4FCCA060DFE0C51A09DD5C3843888BCD, D82417706B517F2610DDF7C86BE03A72EFA9A2A389DF5C8F8ADEAB8144E2C80A ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
15:38:38.0484 0x0e80 helpsvc - ok
15:38:38.0531 0x0e80 [ DEB04DA35CC871B6D309B77E1443C796, F66A15C9528D661940F1F4CA453B3E95036D68C74C3B8AB53644211DBD3D2F32 ] HidServ C:\WINDOWS\System32\hidserv.dll
15:38:38.0531 0x0e80 HidServ - ok
15:38:38.0562 0x0e80 [ CCF82C5EC8A7326C3066DE870C06DAF1, 93395FA4C26B2E82DC8B7025ED3BCF583885E5D8C5F60CD6EEAA6335D6A126EC ] hidusb C:\WINDOWS\system32\DRIVERS\hidusb.sys
15:38:38.0562 0x0e80 hidusb - ok
15:38:38.0609 0x0e80 [ 8878BD685E490239777BFE51320B88E9, C5C3ECF6B049B6736E35B39518A8F830B45C45A88FFE8E3A6B7922AD946597E2 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
15:38:38.0609 0x0e80 hkmsvc - ok
15:38:38.0640 0x0e80 hpn - ok
15:38:38.0671 0x0e80 [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
15:38:38.0687 0x0e80 HTTP - ok
15:38:38.0734 0x0e80 [ 6100A808600F44D999CEBDEF8841C7A3, 61A75118C327812C60622010985A2E80E79B6FD9030A5732390EE5426E4AF6C9 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
15:38:38.0734 0x0e80 HTTPFilter - ok
15:38:38.0765 0x0e80 i2omgmt - ok
15:38:38.0765 0x0e80 i2omp - ok
15:38:38.0796 0x0e80 [ 4A0B06AA8943C1E332520F7440C0AA30, DB2452390CCFE67E0C5FEB4FD42CA24ABE2DDD40D0B22DD5F5B8F70416863918 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
15:38:38.0796 0x0e80 i8042prt - ok
15:38:38.0906 0x0e80 [ 9A883C3C4D91292C0D09DE7C728E781C, 34DD9E781C42FF55BF83F62DFE7B0F4FE3CAEF19B517245BA004C2C641493A98 ] ialm C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
15:38:38.0968 0x0e80 ialm - ok
15:38:39.0093 0x0e80 [ C01AC32DC5C03076CFB852CB5DA5229C, A4D7749220B5BC965D96A267F1E02FE8284A230BA249109207BD4B9EA8DFAC96 ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
15:38:39.0140 0x0e80 idsvc - ok
15:38:39.0203 0x0e80 [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
15:38:39.0203 0x0e80 Imapi - ok
15:38:39.0234 0x0e80 [ 30DEAF54A9755BB8546168CFE8A6B5E1, 3936228CD3125C763ABFCB93E86E4B43838202BCC0913A28E84AC0263B43EE0D ] ImapiService C:\WINDOWS\system32\imapi.exe
15:38:39.0234 0x0e80 ImapiService - ok
15:38:39.0265 0x0e80 ini910u - ok
15:38:39.0281 0x0e80 IntelIde - ok
15:38:39.0312 0x0e80 [ 8C953733D8F36EB2133F5BB58808B66B, 555868F246D73652E998B0B1296476E42FCEDED30D646CC000F31ECE4EBC25E6 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
15:38:39.0312 0x0e80 intelppm - ok
15:38:39.0328 0x0e80 [ 3BB22519A194418D5FEC05D800A19AD0, F6662F440950596DC1382DD1DB5D7891CCEA30A6062BEA942C18445B5F0D8B16 ] ip6fw C:\WINDOWS\system32\drivers\ip6fw.sys
15:38:39.0328 0x0e80 ip6fw - ok
15:38:39.0375 0x0e80 [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
15:38:39.0375 0x0e80 IpFilterDriver - ok
15:38:39.0390 0x0e80 [ B87AB476DCF76E72010632B5550955F5, E6E74D3A86A7917A8BAED44F8E97CCD2EB171E4E4B27E9907F60D1523FAF319A ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
15:38:39.0390 0x0e80 IpInIp - ok
15:38:39.0406 0x0e80 [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
15:38:39.0406 0x0e80 IpNat - ok
15:38:39.0484 0x0e80 [ 39D4F18B4D1B2C72097E74D45D36202C, 822076F946210CCFE76311341D588A5145127F41817EE2DFCDAEDFC8E581CE2B ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
15:38:39.0515 0x0e80 iPod Service - ok
15:38:39.0578 0x0e80 [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
15:38:39.0578 0x0e80 IPSec - ok
15:38:39.0640 0x0e80 [ C93C9FF7B04D772627A3646D89F7BF89, 805FA48E7A46D4F10240BF880A2468F53DEA36E83004399228AB70DB7D20544A ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
15:38:39.0640 0x0e80 IRENUM - ok
15:38:39.0671 0x0e80 [ 05A299EC56E52649B1CF2FC52D20F2D7, 2654619DB3E6D6C385B63AB02F87D4241C4F0250CC31383D1B3586917166C2DC ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
15:38:39.0687 0x0e80 isapnp - ok
15:38:39.0703 0x0e80 [ 463C1EC80CD17420A542B7F36A36F128, E3B11BA26AFEAFB50B0FC168EA07F6049DA6B88BCDDEEE20310602D7FC27A3A7 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
15:38:39.0703 0x0e80 Kbdclass - ok
15:38:39.0750 0x0e80 [ 9EF487A186DEA361AA06913A75B3FA99, B94EBA4EC6D85E11C81AF9927E9EF0AF2E6FE134CFF1FDB0535B7C5A794B4261 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
15:38:39.0750 0x0e80 kbdhid - ok
15:38:39.0781 0x0e80 [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
15:38:39.0796 0x0e80 kmixer - ok
15:38:39.0843 0x0e80 [ B467646C54CC746128904E1654C750C1, 3BD71BE3663EA23463D236D8A2A2E42DFA10C502BDB4B6E131FAF0FBA748219E ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
15:38:39.0843 0x0e80 KSecDD - ok
15:38:39.0890 0x0e80 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527, 0044F03132596A494448CCE5F3D6ECC12617BB4CF6BAE348F79D4DC40ACD6EE0 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
15:38:39.0906 0x0e80 lanmanserver - ok
15:38:39.0953 0x0e80 [ A8888A5327621856C0CEC4E385F69309, B08B63300D824E35E31EEEA2C4C086DFA2C2A964CEDAE512E74D3D88AADAA2C1 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
15:38:39.0953 0x0e80 lanmanworkstation - ok
15:38:39.0968 0x0e80 lbrtfdc - ok
15:38:40.0046 0x0e80 [ BCDF72DCE41874B3AD9143D537B493B2, C048C773137DD94C980179E90FAE7D90A6902DA0153342B33E784DB04C16385A ] Linksys_adapter_H C:\WINDOWS\system32\DRIVERS\AE2500xp.sys
15:38:40.0093 0x0e80 Linksys_adapter_H - ok
15:38:40.0140 0x0e80 [ A7DB739AE99A796D91580147E919CC59, EDF4E039BA277B0E6D66FEB0B28096E67D682C09DFC18ECECF062D9DCFB75ACF ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
15:38:40.0140 0x0e80 LmHosts - ok
15:38:40.0171 0x0e80 [ 986B1FF5814366D71E0AC5755C88F2D3, E6AF051174531C24B38E73987755D366ABEC595476C6D17793E8DCCC73F55340 ] Messenger C:\WINDOWS\System32\msgsvc.dll
15:38:40.0171 0x0e80 Messenger - ok
15:38:40.0203 0x0e80 [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
15:38:40.0203 0x0e80 mnmdd - ok
15:38:40.0234 0x0e80 [ D18F1F0C101D06A1C1ADF26EED16FCDD, BA0837C7780BD8262E143E2935AFA63BE59C3C39EF56CB8608EED0F50AF070D4 ] mnmsrvc C:\WINDOWS\System32\mnmsrvc.exe
15:38:40.0250 0x0e80 mnmsrvc - ok
15:38:40.0281 0x0e80 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1, B342CC9EC3729AB1AB4B5E2E99F890C1E0CA649162DE91F6768AB857B719E97B ] Modem C:\WINDOWS\system32\drivers\Modem.sys
15:38:40.0281 0x0e80 Modem - ok
15:38:40.0296 0x0e80 [ 35C9E97194C8CFB8430125F8DBC34D04, 0C0FCE6B0A23FB0ECB92E1663E1C72D2DD5B177D82E04782957690B69530DB39 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
15:38:40.0296 0x0e80 Mouclass - ok
15:38:40.0343 0x0e80 [ B1C303E17FB9D46E87A98E4BA6769685, 161A45488522055D0F0474ABEDA04DDD0B5DAC2411AF9154B15190BBD66E7153 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
15:38:40.0343 0x0e80 mouhid - ok
15:38:40.0390 0x0e80 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD, 2A5E15ED2C24C6C65EF2F7E1FD93374774076C9D8D451E4422561F4D269C012F ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
15:38:40.0390 0x0e80 MountMgr - ok
15:38:40.0515 0x0e80 [ 345477F02C308B7480702767218C86A2, 98AFB5CF35BD82BA44B8F52CBC5FA3760506ADD7892C2AA1A77E8DF71FC8523F ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
15:38:40.0515 0x0e80 MozillaMaintenance - ok
15:38:40.0531 0x0e80 mraid35x - ok
15:38:40.0593 0x0e80 [ 9BD4DCB5412921864A7AACDEDFBD1923, 46DEE9B9414D26203B62F0D6CAEBF37A3CEFD118556129547B2C5FC7B6FDBA05 ] MREMP50 C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS
15:38:40.0609 0x0e80 MREMP50 - ok
15:38:40.0609 0x0e80 MREMPR5 - ok
15:38:40.0609 0x0e80 MRENDIS5 - ok
15:38:40.0625 0x0e80 [ 07C02C892E8E1A72D6BF35004F0E9C5E, 09ECD59AADF08E2AA0C1BAF5D3D7CBB0948153E531E1F82ECACD43F14F88106B ] MRESP50 C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS
15:38:40.0640 0x0e80 MRESP50 - ok
15:38:40.0687 0x0e80 [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
15:38:40.0687 0x0e80 MRxDAV - ok
15:38:40.0750 0x0e80 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
15:38:40.0765 0x0e80 MRxSmb - ok
15:38:40.0812 0x0e80 [ A137F1470499A205ABBB9AAFB3B6F2B1, FB4951727543030D9E6ED74149C3FAACE2CA9DA8C1B5F616301B30B858C724E8 ] MSDTC C:\WINDOWS\System32\msdtc.exe
15:38:40.0812 0x0e80 MSDTC - ok
15:38:40.0843 0x0e80 [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
15:38:40.0843 0x0e80 Msfs - ok
15:38:40.0859 0x0e80 MSIServer - ok
15:38:40.0875 0x0e80 [ D1575E71568F4D9E14CA56B7B0453BF1, 4ABE0E24786C0D39FA2B885447E56204CA6942FB175E534DCE675D7BCF0B176A ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
15:38:40.0875 0x0e80 MSKSSRV - ok
15:38:40.0921 0x0e80 [ 325BB26842FC7CCC1FCCE2C457317F3E, C07BE560513B1FB91D756494F0BA4AEEB2E1998DE0E1C21EE83DB1183B0CEE91 ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
15:38:40.0921 0x0e80 MSPCLOCK - ok
15:38:40.0937 0x0e80 [ BAD59648BA099DA4A17680B39730CB3D, 9AD4C7C94C186C8815D0BC75DCAFB962158DA6935A244BA243EDDDEB33F9816C ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
15:38:40.0937 0x0e80 MSPQM - ok
15:38:40.0968 0x0e80 [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
15:38:40.0968 0x0e80 mssmbios - ok
15:38:41.0015 0x0e80 [ DE6A75F5C270E756C5508D94B6CF68F5, FCC972DDC36C2C44D836913F10004C2C33B11C54DEFFF0C63E0FDF901D2F9261 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
15:38:41.0015 0x0e80 Mup - ok
15:38:41.0062 0x0e80 [ 0102140028FAD045756796E1C685D695, 5335B8278418CA200E2772124F0602C3E15A5CAF2D5CC59F6785DFAABF339B09 ] napagent C:\WINDOWS\System32\qagentrt.dll
15:38:41.0062 0x0e80 napagent - ok
15:38:41.0109 0x0e80 [ 1DF7F42665C94B825322FAE71721130D, FE0DCB728471465B39A42A7511F4133021FBA5DF88F88BCB5FE2FF34CFD713F9 ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
15:38:41.0109 0x0e80 NDIS - ok
15:38:41.0156 0x0e80 [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
15:38:41.0156 0x0e80 NdisTapi - ok
15:38:41.0187 0x0e80 [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
15:38:41.0187 0x0e80 Ndisuio - ok
15:38:41.0203 0x0e80 [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
15:38:41.0218 0x0e80 NdisWan - ok
15:38:41.0250 0x0e80 [ 2F597BB467E05B1FE3830EABD821B8E0, 141497F5A49D47CCE3C9289644F4BD838DCB238F6D8E847FC006652E21FE02AC ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
15:38:41.0265 0x0e80 NDProxy - ok
15:38:41.0296 0x0e80 [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
15:38:41.0296 0x0e80 NetBIOS - ok
15:38:41.0328 0x0e80 [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
15:38:41.0328 0x0e80 NetBT - ok
15:38:41.0406 0x0e80 [ B857BA82860D7FF85AE29B095645563B, 86FF0E4CDD9C394E8BABD93A4D57E73FF9A779261717DEC6E9CDE99F1C6B0F4C ] NetDDE C:\WINDOWS\system32\netdde.exe
15:38:41.0406 0x0e80 NetDDE - ok
15:38:41.0421 0x0e80 [ B857BA82860D7FF85AE29B095645563B, 86FF0E4CDD9C394E8BABD93A4D57E73FF9A779261717DEC6E9CDE99F1C6B0F4C ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
15:38:41.0421 0x0e80 NetDDEdsdm - ok
15:38:41.0468 0x0e80 [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] Netlogon C:\WINDOWS\System32\lsass.exe
15:38:41.0468 0x0e80 Netlogon - ok
15:38:41.0500 0x0e80 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE, 4E0A67B3CC897E80D4B342FFE8B7B4CC4F6CA2EF2D34C136027A098B2E1C6166 ] Netman C:\WINDOWS\System32\netman.dll
15:38:41.0515 0x0e80 Netman - ok
15:38:41.0609 0x0e80 [ D34612C5D02D026535B3095D620626AE, 1BBCCCBF49EB8807240A77DCB43C25C21682073CC5356594E2C4F53EF36BF657 ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
15:38:41.0609 0x0e80 NetTcpPortSharing - ok
15:38:41.0687 0x0e80 [ 832E4DD8964AB7ACC880B2837CB1ED20, 9774411C6B66C3199348A7FDF448971CEBFFC18D45C11354DBC615AA8FEBF6F0 ] Nla C:\WINDOWS\System32\mswsock.dll
15:38:41.0703 0x0e80 Nla - ok
15:38:41.0718 0x0e80 [ 6623E51595C0076755C29C00846C4EB2, EB661942E3C552DD33B197A9A0BF6AB56CE5CB92BAC183A02B918F0CD3D80F97 ] NPF C:\WINDOWS\system32\drivers\NPF.sys
15:38:41.0734 0x0e80 NPF - ok
15:38:41.0765 0x0e80 [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
15:38:41.0765 0x0e80 Npfs - ok
15:38:41.0796 0x0e80 [ 78A08DD6A8D65E697C18E1DB01C5CDCA, E0E6F3ED05068E32F1D5C2D2B38CDEF4536B8656DB6756C66CF6B40B60C8F3DA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
15:38:41.0828 0x0e80 Ntfs - ok
15:38:41.0859 0x0e80 [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] NtLmSsp C:\WINDOWS\System32\lsass.exe
15:38:41.0859 0x0e80 NtLmSsp - ok
15:38:41.0921 0x0e80 [ 156F64A3345BD23C600655FB4D10BC08, 9611BE411586E068D9297D77102DB3BE48AA67F1BAD6F61A84F83FC3043FA9CD ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
15:38:41.0953 0x0e80 NtmsSvc - ok
15:38:41.0984 0x0e80 [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null C:\WINDOWS\system32\drivers\Null.sys
15:38:41.0984 0x0e80 Null - ok
15:38:42.0015 0x0e80 [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
15:38:42.0031 0x0e80 NwlnkFlt - ok
15:38:42.0062 0x0e80 [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
15:38:42.0062 0x0e80 NwlnkFwd - ok
15:38:42.0109 0x0e80 [ CEC7E2C6C1FA00C7AB2F5434F848AE51, 399CF962689652F6B3906F40D20EE7BBDA856CD56031A65C5A1E8718016FCE90 ] OMCI C:\WINDOWS\SYSTEM32\DRIVERS\OMCI.SYS
15:38:42.0109 0x0e80 OMCI - ok
15:38:42.0156 0x0e80 [ 5575FAF8F97CE5E713D108C2A58D7C7C, 96D4595D19A78CCBE8B325A08780AC077AE5CC99642ACD72FB47AEAE8D344D3B ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
15:38:42.0156 0x0e80 Parport - ok
15:38:42.0171 0x0e80 [ BEB3BA25197665D82EC7065B724171C6, 7E71C13BA30CD95CEE8A9CC85E6F48A01F30EDEAADEE69D80AE828BF97E5A5CA ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
15:38:42.0171 0x0e80 PartMgr - ok
15:38:42.0218 0x0e80 [ 70E98B3FD8E963A6A46A2E6247E0BEA1, 6771313EC41B3B5BFD398F60706E40BE71617046880CC352DD110B001AFC22A1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
15:38:42.0218 0x0e80 ParVdm - ok
15:38:42.0218 0x0e80 PCAMPR5 - ok
15:38:42.0250 0x0e80 [ A219903CCF74233761D92BEF471A07B1, D4E6C360A1D2FCA4D17C991B834D68BF20F5111DD06B1FAB8B22984804CEC269 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
15:38:42.0250 0x0e80 PCI - ok
15:38:42.0265 0x0e80 PCIDump - ok
15:38:42.0296 0x0e80 [ CCF5F451BB1A5A2A522A76E670000FF0, D63F7E5A39653EC9CCE94B7D84B2D3EBD4F54533BD65701020198724042C9257 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
15:38:42.0296 0x0e80 PCIIde - ok
15:38:42.0343 0x0e80 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1, 0BA3DB21DC7C641C181E2635B5C9B73965FDCDCD3EBBBE48FCFEC1C8C987F617 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
15:38:42.0343 0x0e80 Pcmcia - ok
15:38:42.0359 0x0e80 PDCOMP - ok
15:38:42.0359 0x0e80 PDFRAME - ok
15:38:42.0375 0x0e80 PDRELI - ok
15:38:42.0375 0x0e80 PDRFRAME - ok
15:38:42.0390 0x0e80 perc2 - ok
15:38:42.0421 0x0e80 perc2hib - ok
15:38:42.0468 0x0e80 [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] PlugPlay C:\WINDOWS\system32\services.exe
15:38:42.0468 0x0e80 PlugPlay - ok
15:38:42.0500 0x0e80 [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
15:38:42.0500 0x0e80 PolicyAgent - ok
15:38:42.0546 0x0e80 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
15:38:42.0546 0x0e80 PptpMiniport - ok
15:38:42.0562 0x0e80 [ A32BEBAF723557681BFC6BD93E98BD26, 35039BA72A29F87B2CA37DCDE4EFDAABBDEAD8CE3EB8652ACC665994118145A6 ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
15:38:42.0562 0x0e80 Processor - ok
15:38:42.0578 0x0e80 [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
15:38:42.0593 0x0e80 ProtectedStorage - ok
15:38:42.0609 0x0e80 [ 09298EC810B07E5D582CB3A3F9255424, 35473A1BE25AC289474090EB0806AC6B3035DC33D1F3DF97A14BF1E361AC6AC3 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
15:38:42.0609 0x0e80 PSched - ok
15:38:42.0656 0x0e80 [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
15:38:42.0656 0x0e80 Ptilink - ok
15:38:42.0703 0x0e80 [ 1962166E0CEB740704F30FA55AD3D509, 22C21907D7FDCA2CBBE1EC0479D83DDD4C4FCBC07C8791A2F62414EC5E85E488 ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
15:38:42.0703 0x0e80 PxHelp20 - ok
15:38:42.0703 0x0e80 ql1080 - ok
15:38:42.0718 0x0e80 Ql10wnt - ok
15:38:42.0734 0x0e80 ql12160 - ok
15:38:42.0734 0x0e80 ql1240 - ok
15:38:42.0750 0x0e80 ql1280 - ok
15:38:42.0796 0x0e80 [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
15:38:42.0796 0x0e80 RasAcd - ok
15:38:42.0828 0x0e80 [ AD188BE7BDF94E8DF4CA0A55C00A5073, C7D76CB579FAEBCCC2873499441BACDD6BD6668ACF5ED7F31862656E96E2B20C ] RasAuto C:\WINDOWS\System32\rasauto.dll
15:38:42.0828 0x0e80 RasAuto - ok
15:38:42.0875 0x0e80 [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
15:38:42.0875 0x0e80 Rasl2tp - ok
15:38:42.0906 0x0e80 [ 76A9A3CBEADD68CC57CDA5E1D7448235, 4AFD048C5D2306AB8DE46F3AA60AC0213333DDA3B09A9E91F7585DB6EB978EC8 ] RasMan C:\WINDOWS\System32\rasmans.dll
15:38:42.0921 0x0e80 RasMan - ok
15:38:42.0937 0x0e80 [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
15:38:42.0937 0x0e80 RasPppoe - ok
15:38:42.0984 0x0e80 [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
15:38:42.0984 0x0e80 Raspti - ok
15:38:43.0000 0x0e80 [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
15:38:43.0015 0x0e80 Rdbss - ok
15:38:43.0031 0x0e80 [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
15:38:43.0031 0x0e80 RDPCDD - ok
15:38:43.0078 0x0e80 [ 43AF5212BD8FB5BA6EED9754358BD8F7, AF330F61CECA4AFA359CEABC5EB3227E6B56A9A2DCE50701381D665122D7356D ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
15:38:43.0078 0x0e80 RDPWD - ok
15:38:43.0125 0x0e80 [ 3C37BF86641BDA977C3BF8A840F3B7FA, AB9A6E54DBA3F4561CD4837372BECCE0D73943D02E3288F944333039375AC08C ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
15:38:43.0140 0x0e80 RDSessMgr - ok
15:38:43.0171 0x0e80 [ F828DD7E1419B6653894A8F97A0094C5, E6150E1F598BA4CFEDB8FF075BC0D576518C331B864388F1CAE8812EFF106ECF ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
15:38:43.0171 0x0e80 redbook - ok
15:38:43.0218 0x0e80 [ 7E699FF5F59B5D9DE5390E3C34C67CF5, 3FCF0442D80AB181FED4303E570378736AA1F8718C0B8B70F689A1E45200FFE4 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
15:38:43.0218 0x0e80 RemoteAccess - ok
15:38:43.0250 0x0e80 [ D8B0B4ADE32574B2D9C5CC34DC0DBBE7, CDF10D3D8ADA7ADB1CC1567BFA986557C6D69F4099B70FDFABD4C3D09E3CA778 ] ROOTMODEM C:\WINDOWS\system32\Drivers\RootMdm.sys
15:38:43.0265 0x0e80 ROOTMODEM - ok
15:38:43.0296 0x0e80 [ AAED593F84AFA419BBAE8572AF87CF6A, CC0FFC5A69394C8830DC66320DA01A820BBF41AD7E57D0FC343561DC5EF9A360 ] RpcLocator C:\WINDOWS\System32\locator.exe
15:38:43.0296 0x0e80 RpcLocator - ok
15:38:43.0343 0x0e80 [ 6B27A5C03DFB94B4245739065431322C, 6AEAC16AB4E0DFD25123AAF4D4181FEE1B919B7B2793117006CE8CF30E826CFD ] RpcSs C:\WINDOWS\system32\rpcss.dll
15:38:43.0359 0x0e80 RpcSs - ok
15:38:43.0375 0x0e80 [ 471B3F9741D762ABE75E9DEEA4787E47, D9ADE42965EC22AEB4B2AD21D429C3C8232A60AA9853DEFDA7AED86A13FE8623 ] RSVP C:\WINDOWS\System32\rsvp.exe
15:38:43.0390 0x0e80 RSVP - ok
15:38:43.0421 0x0e80 [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] SamSs C:\WINDOWS\system32\lsass.exe
15:38:43.0421 0x0e80 SamSs - ok
15:38:43.0500 0x0e80 [ 39763504067962108505BFF25F024345, 73C9710B61EDC7FBEDE1D7A767AA3D3A169E7AD012494D05CB5EE7E5C5752BB9 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
15:38:43.0500 0x0e80 SASDIFSV - ok
15:38:43.0546 0x0e80 [ 77B9FC20084B48408AD3E87570EB4A85, B5BC5FEC1356DECB66A7A671DB67112BDAC8F942BF1C4B986B1805B41EF362B1 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
15:38:43.0546 0x0e80 SASKUTIL - ok
15:38:43.0593 0x0e80 [ 86D007E7A654B9A71D1D7D856B104353, 7B1DE53D637A5FC9619D5D07C48927AFEC89D959207F6F2E2F45DD054EEA04C7 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
15:38:43.0593 0x0e80 SCardSvr - ok
15:38:43.0656 0x0e80 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA, 0B582F47BD70732BAC48B8B86E5D06CE7F299A20E8177F3F2E6F28217C3FB605 ] Schedule C:\WINDOWS\system32\schedsvc.dll
15:38:43.0656 0x0e80 Schedule - ok
15:38:43.0734 0x0e80 [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
15:38:43.0734 0x0e80 Secdrv - ok
15:38:43.0765 0x0e80 [ CBE612E2BB6A10E3563336191EDA1250, C331797DC3569F0E715766561DE2562F60B924378842246C35D2B1CF867E9D96 ] seclogon C:\WINDOWS\System32\seclogon.dll
15:38:43.0781 0x0e80 seclogon - ok
15:38:43.0796 0x0e80 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0, 7105B026F966A992430F86C3698ABE15EC73E4772F1A3E362E29FD5247A5DCA6 ] SENS C:\WINDOWS\system32\sens.dll
15:38:43.0796 0x0e80 SENS - ok
15:38:43.0828 0x0e80 [ 0F29512CCD6BEAD730039FB4BD2C85CE, 4F98AE390D1B14A755700DD6CEFB9CF921F0404AF2145D2D7E5F52394F87C6A5 ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
15:38:43.0828 0x0e80 serenum - ok
15:38:43.0843 0x0e80 [ CCA207A8896D4C6A0C9CE29A4AE411A7, 5999B39242283CD803319AADCA171CCCC6E2A40FB2FAFA51B1D29F3FF2DD8D6C ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
15:38:43.0843 0x0e80 Serial - ok
15:38:43.0875 0x0e80 [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
15:38:43.0875 0x0e80 Sfloppy - ok
15:38:43.0921 0x0e80 [ 83F41D0D89645D7235C051AB1D9523AC, B681F33EEAA511D6A2DCB9FBAA407B739184C9FF6067C6B7E51F1FC37E9D4DD7 ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
15:38:43.0953 0x0e80 SharedAccess - ok
15:38:43.0984 0x0e80 [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
15:38:43.0984 0x0e80 ShellHWDetection - ok
15:38:44.0000 0x0e80 Simbad - ok
15:38:44.0015 0x0e80 smwdm - ok
15:38:44.0015 0x0e80 Sparrow - ok
15:38:44.0046 0x0e80 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] splitter C:\WINDOWS\system32\drivers\splitter.sys
15:38:44.0046 0x0e80 splitter - ok
15:38:44.0093 0x0e80 [ 60784F891563FB1B767F70117FC2428F, E0B07F08E60FFBAD36C2E58180F4B2A16DCA47716044CBE0213DF7B74D742F1F ] Spooler C:\WINDOWS\system32\spoolsv.exe
15:38:44.0093 0x0e80 Spooler - ok
15:38:44.0140 0x0e80 [ 76BB022C2FB6902FD5BDD4F78FC13A5D, 6031CB2344D7277FC703480EB43CF856A0F8F818EA98FF26A2CA532336CD2DFA ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
15:38:44.0140 0x0e80 sr - ok
15:38:44.0187 0x0e80 [ 3805DF0AC4296A34BA4BF93B346CC378, B57A14F1B7B0997E619DDD62B73157AA2399A9852166FB58139CBB358A88F6F3 ] srservice C:\WINDOWS\system32\srsvc.dll
15:38:44.0187 0x0e80 srservice - ok
15:38:44.0250 0x0e80 [ 47DDFC2F003F7F9F0592C6874962A2E7, 17C643BD4EB09B5666FE41817DC785BE04A6E491CE79E8E5A702CDBD98E1BDD7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
15:38:44.0265 0x0e80 Srv - ok
15:38:44.0312 0x0e80 [ 0A5679B3714EDAB99E357057EE88FCA6, 01E1A101FFF48402C77E385A78FEF27876E04533B60EB1C18558A737E57E5FA8 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
15:38:44.0328 0x0e80 SSDPSRV - ok
15:38:44.0328 0x0e80 ssfodpzi - ok
15:38:44.0390 0x0e80 [ 8BAD69CBAC032D4BBACFCE0306174C30, 2AA0DA710FCBFF38FE8DA91EE02E7A4503269347E61F8D3246FCA3384BBA2305 ] stisvc C:\WINDOWS\system32\wiaservc.dll
15:38:44.0421 0x0e80 stisvc - ok
15:38:44.0500 0x0e80 [ 2AA2D356CB735CD3CCA9F671BD75C9B5, BF6F0E40A2BD0FF78D5DE5F45ABA3DB83FB0592E6BE6D4DCB401DC04ECB1D42F ] SWDUMon C:\WINDOWS\system32\DRIVERS\SWDUMon.sys
15:38:44.0500 0x0e80 SWDUMon - ok
15:38:44.0546 0x0e80 [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
15:38:44.0546 0x0e80 swenum - ok
15:38:44.0578 0x0e80 [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
15:38:44.0578 0x0e80 swmidi - ok
15:38:44.0578 0x0e80 SwPrv - ok
15:38:44.0593 0x0e80 symc810 - ok
15:38:44.0609 0x0e80 symc8xx - ok
15:38:44.0625 0x0e80 sym_hi - ok
15:38:44.0625 0x0e80 sym_u3 - ok
15:38:44.0656 0x0e80 [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
15:38:44.0656 0x0e80 sysaudio - ok
15:38:44.0703 0x0e80 [ C7ABBC59B43274B1109DF6B24D617051, 4384CA0AA6CE9B603CF7DB775A3C721E46715D5B120B94FB57DEADAADE18535B ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
15:38:44.0703 0x0e80 SysmonLog - ok
15:38:44.0734 0x0e80 [ 3CB78C17BB664637787C9A1C98F79C38, F35C31F6B7F366CB949D1044B357C76DEC9170441C5E559802794F62B72FD255 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
15:38:44.0750 0x0e80 TapiSrv - ok
15:38:44.0796 0x0e80 [ 9AEFA14BD6B182D61E3119FA5F436D3D, EA29E49434585409272E7901AF89771FE9D6E911A7DC44AB3C7020CFF8A44552 ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
15:38:44.0828 0x0e80 Tcpip - ok
15:38:44.0875 0x0e80 [ 4E53BBCC4BE37D7A4BD6EF1098C89FF7, D084EFE07AC200672A1CE7BB8AE736612B3E353271188D26E29EC973E26E1F5F ] Tcpip6 C:\WINDOWS\system32\DRIVERS\tcpip6.sys
15:38:44.0890 0x0e80 Tcpip6 - ok
15:38:44.0921 0x0e80 [ 6471A66807F5E104E4885F5B67349397, F35CBFFB8BB235CCE30EF94A5273333900DD49FD506BF9D55D99A320B8A53A5A ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
15:38:44.0921 0x0e80 TDPIPE - ok
15:38:44.0937 0x0e80 [ C56B6D0402371CF3700EB322EF3AAF61, 7743FA4C734BCE38EFB1CA69BC17364D8421E2CD172F856F7E38E7AE1EE93F2F ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
15:38:44.0937 0x0e80 TDTCP - ok
15:38:44.0984 0x0e80 [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
15:38:45.0000 0x0e80 TermDD - ok
15:38:45.0031 0x0e80 [ FF3477C03BE7201C294C35F684B3479F, D6246521539BA4ACD022D26983182F5E323D2EF1EA7C54265A248C43A1CE5202 ] TermService C:\WINDOWS\System32\termsrv.dll
15:38:45.0046 0x0e80 TermService - ok
15:38:45.0062 0x0e80 [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] Themes C:\WINDOWS\System32\shsvcs.dll
15:38:45.0078 0x0e80 Themes - ok
15:38:45.0125 0x0e80 [ DF8444A8FA8FD38D8848BDD40A8403B3, AD61EA0F35E91646F544BC2DDD3AAC51CC21950CBCC9FBACFCF5A03F17105FEF ] tmcomm C:\WINDOWS\system32\drivers\tmcomm.sys
15:38:45.0140 0x0e80 tmcomm - ok
15:38:45.0156 0x0e80 TosIde - ok
15:38:45.0187 0x0e80 [ 55BCA12F7F523D35CA3CB833C725F54E, 849FB1AE31B143B14B298BBC0D91230693D41DEB95F46516878F53A7F4186C38 ] TrkWks C:\WINDOWS\system32\trkwks.dll
15:38:45.0187 0x0e80 TrkWks - ok
15:38:45.0218 0x0e80 [ 8F861EDA21C05857EB8197300A92501C, 374FF9464F273610A051B9220C8D20F01FD4DD029095A7BE37244E20C5C8B5BB ] tunmp C:\WINDOWS\system32\DRIVERS\tunmp.sys
15:38:45.0234 0x0e80 tunmp - ok
15:38:45.0265 0x0e80 [ E266683FC95ABDEC17CD378564E1B54B, 88051AA353AB3E8F53AB0486F21C2DB8B13F672C39059F12D9FF47C8F378251E ] TVICHW32 C:\WINDOWS\system32\DRIVERS\TVICHW32.SYS
15:38:45.0265 0x0e80 TVICHW32 - ok
15:38:45.0312 0x0e80 [ 5787B80C2E3C5E2F56C2A233D91FA2C9, 3774905CF77954DFCECDA5BCC7CDE3D0ED72712BFAAD85ADAE5246306447E46C ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
15:38:45.0312 0x0e80 Udfs - ok
15:38:45.0312 0x0e80 ultra - ok
15:38:45.0359 0x0e80 [ 402DDC88356B1BAC0EE3DD1580C76A31, 32A686595710336A6BFD54C03F552AE39439611662F84EF5D24193AE5665C6F3 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
15:38:45.0390 0x0e80 Update - ok
15:38:45.0437 0x0e80 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91, 7746916DB48E3F5B243B63C066596AD9037A494BF1AD935946DD04AC85D983DF ] upnphost C:\WINDOWS\System32\upnphost.dll
15:38:45.0437 0x0e80 upnphost - ok
15:38:45.0484 0x0e80 [ 05365FB38FCA1E98F7A566AAAF5D1815, 16843048CEEC3DAA3B953A12FF1EE339E86783A08F2A56DA7F94AD9F9717D77D ] UPS C:\WINDOWS\System32\ups.exe
15:38:45.0500 0x0e80 UPS - ok
15:38:45.0546 0x0e80 [ 1B611611C28D2DF25BC057D79C6F13FC, B0D86F63E44B40413BBAE6402CC088046CFAE082D41BBC2ED5A916293356B846 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
15:38:45.0546 0x0e80 usbccgp - ok
15:38:45.0578 0x0e80 [ 4BAC8DF07F1D8434FC640E677A62204E, 76C1351AF6752224BF59DEEE0F8665FE699F3DFD679F5BCD01C7D9383E6402A4 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
15:38:45.0578 0x0e80 usbehci - ok
15:38:45.0625 0x0e80 [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
15:38:45.0625 0x0e80 usbhub - ok
15:38:45.0656 0x0e80 [ A717C8721046828520C9EDF31288FC00, 1530BBE832EDBB0974AD89D723A03FF7A0094B368992D73C2C3E62A181DF1E0A ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
15:38:45.0656 0x0e80 usbprint - ok
15:38:45.0703 0x0e80 [ F8EDE2B6928970DCE3D5614C27D9E7F6, 6E5EBBC8B70C1D593634DAF0C190DEADFDA18C3CBC8F552A76F156F3869EF05B ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
15:38:45.0734 0x0e80 usbscan - ok
15:38:45.0765 0x0e80 [ A32426D9B14A089EAA1D922E0C5801A9, ED1DC52EE45F8EAD3AEC4B1F817BB25634141CF48295494C5947DCE6CF7A9817 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
15:38:45.0765 0x0e80 USBSTOR - ok
15:38:45.0796 0x0e80 [ 26496F9DEE2D787FC3E61AD54821FFE6, 8BE7FF647470B9A951CBB478FAF83D657A15CC78037F42348A6B738F21D523DA ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
15:38:45.0812 0x0e80 usbuhci - ok
15:38:45.0828 0x0e80 [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
15:38:45.0828 0x0e80 VgaSave - ok
15:38:45.0843 0x0e80 ViaIde - ok
15:38:45.0859 0x0e80 [ 4C8FCB5CC53AAB716D810740FE59D025, 010EAC43DBED700B73E4FC908FAAF9F6A0168EBBD5D86751E49BC33AAA18BFA4 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
15:38:45.0859 0x0e80 VolSnap - ok
15:38:45.0906 0x0e80 [ 7A9DB3A67C333BF0BD42E42B8596854B, D31A9A3B1AAAB373EDD73B674102395212FCB616F829E938B7B2B7BE7D4752C5 ] VSS C:\WINDOWS\System32\vssvc.exe
15:38:45.0921 0x0e80 VSS - ok
15:38:45.0968 0x0e80 [ 54AF4B1D5459500EF0937F6D33B1914F, FA1876888BCB9C72A92369DBED4FF1A8666784523FB41E618FA0919490FCDDB9 ] W32Time C:\WINDOWS\system32\w32time.dll
15:38:45.0968 0x0e80 W32Time - ok
15:38:46.0031 0x0e80 [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
15:38:46.0031 0x0e80 Wanarp - ok
15:38:46.0046 0x0e80 WDICA - ok
15:38:46.0078 0x0e80 [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
15:38:46.0078 0x0e80 wdmaud - ok
15:38:46.0109 0x0e80 [ 77A354E28153AD2D5E120A5A8687BC06, 8B2D37A4443501C0A8E70BC2079BE27F0A36FD07B561E6F68B40A72EABBC2DFE ] WebClient C:\WINDOWS\System32\webclnt.dll
15:38:46.0125 0x0e80 WebClient - ok
15:38:46.0203 0x0e80 [ 2D0E4ED081963804CCC196A0929275B5, E1D75C7D7233D81DFDE13160B0C80138DF8B35230D04FB79B367A52FACF69BF8 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
15:38:46.0203 0x0e80 winmgmt - ok
15:38:46.0265 0x0e80 [ 051B1BDECD6DEE18C771B5D5EC7F044D, E9D4870C7E4E6119B274CF788D564BE9C48EA63790F5D6A2E987EB6DF7C93200 ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
15:38:46.0265 0x0e80 WmdmPmSN - ok
15:38:46.0343 0x0e80 [ E0673F1106E62A68D2257E376079F821, 12992F18C9653050B10DC61D12988067933FCFDF02123D3A7EF5DE607A785DDC ] WmiApSrv C:\WINDOWS\System32\wbem\wmiapsrv.exe
15:38:46.0343 0x0e80 WmiApSrv - ok
15:38:46.0453 0x0e80 [ 6BAB4DC65515A098505F8B3D01FB6FE5, 52AA14777920753A8AF76072216A266F5D0036F112F671E7104E1F4C04AE499E ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
15:38:46.0500 0x0e80 WMPNetworkSvc - ok
15:38:46.0562 0x0e80 [ C60DC16D4E406810FAD54B98DC92D5EC, 43E7DF323BBD7C889CAD078176E239319A40EE4BEBC7BD753012B94CF5E48551 ] WpdUsb C:\WINDOWS\system32\Drivers\wpdusb.sys
15:38:46.0562 0x0e80 WpdUsb - ok
15:38:46.0609 0x0e80 [ 6ABE6E225ADB5A751622A9CC3BC19CE8, 4061C5D0F051DFF1730E2A3BFC1CCA97B29602FC50F10F6B44D93B0D28F42024 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
15:38:46.0609 0x0e80 WS2IFSL - ok
15:38:46.0656 0x0e80 [ 7C278E6408D1DCE642230C0585A854D5, DA46079A04F6E8E3441E4AE454AEAC02B3E935DE29CE7F6D4476F57867FCC12A ] wscsvc C:\WINDOWS\system32\wscsvc.dll
15:38:46.0703 0x0e80 wscsvc - ok
15:38:46.0718 0x0e80 [ 35321FB577CDC98CE3EB3A3EB9E4610A, C9A6F5CF282D8FCB3CDFCC4B306013480E78E1B664E1A60A4E27B161F9FFD4CD ] wuauserv C:\WINDOWS\system32\wuauserv.dll
15:38:46.0750 0x0e80 wuauserv - ok
15:38:46.0812 0x0e80 [ F15FEAFFFBB3644CCC80C5DA584E6311, 79B3E9AF35976CE49921E9BEA3BA3B4A8AF762FD3F284B62954038B5FFB32471 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
15:38:46.0812 0x0e80 WudfPf - ok
15:38:46.0859 0x0e80 [ 28B524262BCE6DE1F7EF9F510BA3985B, AEFF02B899801A63CBB262757C3D4369E38BFF0690BD085DE60E873DFBE3C3F4 ] WUDFRd C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
15:38:46.0875 0x0e80 WUDFRd - ok
15:38:46.0921 0x0e80 [ 05231C04253C5BC30B26CBAAE680ED89, 5C03C2D7E0B573646D32F4093E2FF2C3BA391C39F5BA37D67F69D38E357FCC3D ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
15:38:46.0921 0x0e80 WudfSvc - ok
15:38:47.0000 0x0e80 [ 81DC3F549F44B1C1FFF022DEC9ECF30B, 3D14BFEA539F9CEB16555BD56C5E3C7C8F6692FC62C2789F8AAEA1C042E63940 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
15:38:47.0031 0x0e80 WZCSVC - ok
15:38:47.0078 0x0e80 [ 295D21F14C335B53CB8154E5B1F892B9, 9418477C2E3EA93E93D931A4EDD4500DA568FAD6040204B5201D1080203B0BBC ] xmlprov C:\WINDOWS\System32\xmlprov.dll
15:38:47.0156 0x0e80 xmlprov - ok
15:38:47.0265 0x0e80 [ DD0042F0C3B606A6A8B92D49AFB18AD6, 8D3BE4C93D02AF5F42EC46AF598D6DA40C61D467CB2FEE5E222F9C1E7A84B852 ] YahooAUService C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
15:38:47.0296 0x0e80 YahooAUService - ok
15:38:47.0296 0x0e80 ZD1211BU(ZyDAS) - ok
15:38:47.0328 0x0e80 ================ Scan global ===============================
15:38:47.0359 0x0e80 [ 42F1F4C0AFB08410E5F02D4B13EBB623, 924C30587C51C0D1E1F47991969AF492A644552E15F2480EA991DCB74A3E68D5 ] C:\WINDOWS\system32\basesrv.dll
15:38:47.0406 0x0e80 [ 69AE2B2E6968C316536E5B10B9702E63, D9C5DA7A20DDE69D91E72400C3F06F3CB099DEF42EA6C53FCE076258A0C22391 ] C:\WINDOWS\system32\winsrv.dll
15:38:47.0437 0x0e80 [ 69AE2B2E6968C316536E5B10B9702E63, D9C5DA7A20DDE69D91E72400C3F06F3CB099DEF42EA6C53FCE076258A0C22391 ] C:\WINDOWS\system32\winsrv.dll
15:38:47.0500 0x0e80 [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] C:\WINDOWS\system32\services.exe
15:38:47.0500 0x0e80 [ Global ] - ok
15:38:47.0500 0x0e80 ================ Scan MBR ==================================
15:38:47.0546 0x0e80 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
15:38:47.0718 0x0e80 \Device\Harddisk0\DR0 - ok
15:38:47.0718 0x0e80 ================ Scan VBR ==================================
15:38:47.0734 0x0e80 [ 60065E98D9B7496A4D0C841CF536CFB5 ] \Device\Harddisk0\DR0\Partition1
15:38:47.0734 0x0e80 \Device\Harddisk0\DR0\Partition1 - ok
15:38:47.0734 0x0e80 ================ Scan generic autorun ======================
15:38:47.0843 0x0e80 [ D3AC38E80E928CC61A22650E04423BB8, 8DB324E5BCC2A721EB0C48F0F3ECC21E49D6172A3BF8ACC55244C08FAEB3101C ] C:\Program Files\Epson Software\Event Manager\EEventManager.exe
15:38:47.0921 0x0e80 EEventManager - ok
15:38:48.0015 0x0e80 [ 048EA4B978851788E9F5E8E4F081DF7A, EB62719AC0DCC18FF056F2CD84438BF14B61E38F0619617C81961C6257BDFCEC ] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
15:38:48.0062 0x0e80 Adobe ARM - ok
15:38:48.0156 0x0e80 [ 9153F2335BCDB87F41559CF066223BF9, C0F89F9A63B1F49F007A971F5180128EC0AFBBBF7CFA82CA1FA44CB9DB5F8BB3 ] C:\Program Files\Common Files\Java\Java Update\jusched.exe
15:38:48.0203 0x0e80 SunJavaUpdateSched - ok
15:38:48.0265 0x0e80 [ C493E204784A3076D1E33764C7CAFAC6, EB427542A87E481A764D8543A76C5086923414ECD4C7BA71B714358B8F5573C7 ] C:\Program Files\iTunes\iTunesHelper.exe
15:38:48.0265 0x0e80 iTunesHelper - ok
15:38:48.0500 0x0e80 [ DA5FBAA5D62B4FD393947DE5EE8715BE, BA3FDF00AFCF2859585FB9D934E67D31CC7960C093A09F73F8F6AEFE86E9528E ] C:\Documents and Settings\Linda\Local Settings\Application Data\FluxSoftware\Flux\flux.exe
15:38:48.0562 0x0e80 F.lux - ok
15:38:48.0953 0x0e80 [ 6B6E1D3A3A0CEBDE9FD3BF2BF42F76EE, 62459834F527DA683DDE20ACC26EDF002E7FD619F3024FE9DCC5C95A2CC56AD6 ] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
15:38:49.0265 0x0e80 SUPERAntiSpyware - ok
15:38:49.0328 0x0e80 [ 5F1D5F88303D4A4DBC8E5F97BA967CC3, 5FB24FC7916A6E6B3BE7D84CB1684215B266CD1495575C2E5672B8447932E5B1 ] C:\WINDOWS\system32\ctfmon.exe
15:38:49.0328 0x0e80 ctfmon.exe - ok
15:38:49.0343 0x0e80 Waiting for KSN requests completion. In queue: 209
15:38:50.0953 0x0e80 AV detected via SS1: ThreatFire, 3.5.0.21, enabled, updated
15:38:51.0015 0x0e80 Win FW state via NFM: enabled
15:38:51.0375 0x0e80 ============================================================
15:38:51.0375 0x0e80 Scan finished
15:38:51.0375 0x0e80 ============================================================
15:38:51.0390 0x0728 Detected object count: 0
15:38:51.0390 0x0728 Actual detected object count: 0




# AdwCleaner v4.110 - Logfile created 17/02/2015 at 12:12:43
# Updated 05/02/2015 by Xplode
# Database : 2015-02-14.2 [Server]
# Operating system : Microsoft Windows XP Service Pack 3 (x86)
# Username : Linda - HOME
# Running from : C:\Documents and Settings\Linda\My Documents\Downloads\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****

Service Found : YahooAUService

***** [ Files / Folders ] *****

File Found : C:\Documents and Settings\Linda\Desktop\Live PC Help.lnk
File Found : C:\END
File Found : C:\WINDOWS\system32\drivers\netfilter.sys
File Found : C:\WINDOWS\system32\MyOSProtect.dll
Folder Found : C:\Documents and Settings\All Users\Application Data\AVG Secure Search
Folder Found : C:\Documents and Settings\All Users\Application Data\driver whiz
Folder Found : C:\Documents and Settings\All Users\Application Data\Fighters
Folder Found : C:\Documents and Settings\All Users\Application Data\PC Drivers HeadQuarters
Folder Found : C:\Documents and Settings\All Users\Application Data\w3i
Folder Found : C:\Documents and Settings\All Users\Application Data\Yahoo! Companion
Folder Found : C:\Documents and Settings\Linda\Application Data\Systweak
Folder Found : C:\Documents and Settings\Linda\Application Data\UpdaterEX
Folder Found : C:\Program Files\File Type Helper
Folder Found : C:\Program Files\PC Drivers HeadQuarters

***** [ Scheduled tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Data Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - *.local
Key Found : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Found : HKCU\Software\DriverSupport
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\UpdaterEX
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8DCB7100-DF86-4384-8842-8FA844297B3F}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D2CE3E00-F94A-4740-988E-03DC2F38C34F}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{81017EA9-9AA8-4A6A-9734-7AF40E7D593F}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8DCB7100-DF86-4384-8842-8FA844297B3F}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D2CE3E00-F94A-4740-988E-03DC2F38C34F}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Activities\Search\ask.com
Key Found : HKCU\Software\systweak
Key Found : HKCU\Software\UpdaterEX
Key Found : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{81017EA9-9AA8-4A6A-9734-7AF40E7D593F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Found : HKLM\SOFTWARE\CompeteInc
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Advanced Driver Updater_is1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Yahoo! Toolbar
Key Found : HKLM\SOFTWARE\SPPDCOM
Key Found : HKLM\SOFTWARE\systweak
Value Found : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{81017EA9-9AA8-4A6A-9734-7AF40E7D593F}]

***** [ Web browsers ] *****

-\\ Internet Explorer v8.0.6001.18702


-\\ Mozilla Firefox v35.0.1 (x86 en-US)


-\\ Google Chrome v

[C:\Documents and Settings\Linda\Local Settings\Application Data\Google\Chrome\User Data\Default\Web data] - Found [Search Provider] : hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT1166249
[C:\Documents and Settings\Linda\Local Settings\Application Data\Google\Chrome\User Data\Default\Web data] - Found [Search Provider] : hxxp://search.aol.com/aol/tracking?d_ch=en_US_huffingtonpost&q={searchTerms}&s_it=search_addon
[C:\Documents and Settings\Linda\Local Settings\Application Data\Google\Chrome\User Data\Default\Web data] - Found [Search Provider] : hxxp://en.softonic.com/s/{searchTerms}

-\\ Chromium v

*************************

AdwCleaner[R0].txt - [17430 bytes] - [13/03/2014 20:11:52]
AdwCleaner[R1].txt - [1486 bytes] - [28/03/2014 07:33:14]
AdwCleaner[R2].txt - [4358 bytes] - [17/02/2015 12:12:43]
AdwCleaner[S0].txt - [16907 bytes] - [13/03/2014 20:14:32]
AdwCleaner[S1].txt - [1555 bytes] - [28/03/2014 07:42:33]

########## EOF - C:\AdwCleaner\AdwCleaner[R2].txt - [4536 bytes] ##########




REGISTRY (I COPIED)

# AdwCleaner v4.110 - Logfile created 17/02/2015 at 12:12:43
# Updated 05/02/2015 by Xplode
# Database : 2015-02-14.2 [Server]
# Operating system : Microsoft Windows XP Service Pack 3 (x86)
# Username : Linda - HOME
# Running from : C:\Documents and Settings\Linda\My Documents\Downloads\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****

Service Found : YahooAUService

***** [ Files / Folders ] *****

File Found : C:\Documents and Settings\Linda\Desktop\Live PC Help.lnk
File Found : C:\END
File Found : C:\WINDOWS\system32\drivers\netfilter.sys
File Found : C:\WINDOWS\system32\MyOSProtect.dll
Folder Found : C:\Documents and Settings\All Users\Application Data\AVG Secure Search
Folder Found : C:\Documents and Settings\All Users\Application Data\driver whiz
Folder Found : C:\Documents and Settings\All Users\Application Data\Fighters
Folder Found : C:\Documents and Settings\All Users\Application Data\PC Drivers HeadQuarters
Folder Found : C:\Documents and Settings\All Users\Application Data\w3i
Folder Found : C:\Documents and Settings\All Users\Application Data\Yahoo! Companion
Folder Found : C:\Documents and Settings\Linda\Application Data\Systweak
Folder Found : C:\Documents and Settings\Linda\Application Data\UpdaterEX
Folder Found : C:\Program Files\File Type Helper
Folder Found : C:\Program Files\PC Drivers HeadQuarters

***** [ Scheduled tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Data Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - *.local
Key Found : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Found : HKCU\Software\DriverSupport
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\UpdaterEX
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8DCB7100-DF86-4384-8842-8FA844297B3F}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D2CE3E00-F94A-4740-988E-03DC2F38C34F}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{81017EA9-9AA8-4A6A-9734-7AF40E7D593F}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8DCB7100-DF86-4384-8842-8FA844297B3F}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D2CE3E00-F94A-4740-988E-03DC2F38C34F}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Activities\Search\ask.com
Key Found : HKCU\Software\systweak
Key Found : HKCU\Software\UpdaterEX
Key Found : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{81017EA9-9AA8-4A6A-9734-7AF40E7D593F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Found : HKLM\SOFTWARE\CompeteInc
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Advanced Driver Updater_is1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Yahoo! Toolbar
Key Found : HKLM\SOFTWARE\SPPDCOM
Key Found : HKLM\SOFTWARE\systweak
Value Found : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{81017EA9-9AA8-4A6A-9734-7AF40E7D593F}]

***** [ Web browsers ] *****

-\\ Internet Explorer v8.0.6001.18702


-\\ Mozilla Firefox v35.0.1 (x86 en-US)


-\\ Google Chrome v

[C:\Documents and Settings\Linda\Local Settings\Application Data\Google\Chrome\User Data\Default\Web data] - Found [Search Provider] : hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT1166249
[C:\Documents and Settings\Linda\Local Settings\Application Data\Google\Chrome\User Data\Default\Web data] - Found [Search Provider] : hxxp://search.aol.com/aol/tracking?d_ch=en_US_huffingtonpost&q={searchTerms}&s_it=search_addon
[C:\Documents and Settings\Linda\Local Settings\Application Data\Google\Chrome\User Data\Default\Web data] - Found [Search Provider] : hxxp://en.softonic.com/s/{searchTerms}

-\\ Chromium v

*************************

AdwCleaner[R0].txt - [17430 bytes] - [13/03/2014 20:11:52]
AdwCleaner[R1].txt - [1486 bytes] - [28/03/2014 07:33:14]
AdwCleaner[R2].txt - [4358 bytes] - [17/02/2015 12:12:43]
AdwCleaner[S0].txt - [16907 bytes] - [13/03/2014 20:14:32]
AdwCleaner[S1].txt - [1555 bytes] - [28/03/2014 07:42:33]

########## EOF - C:\AdwCleaner\AdwCleaner[R2].txt - [4536 bytes] ##########




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.4.2 (02.02.2015:1)
OS: Microsoft Windows XP x86
Ran by Linda on Tue 02/17/2015 at 12:40:28.93
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\\DisplayName
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\\URL



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{31090377-0740-419E-BEFC-A56E50500D5B}



~~~ Files

Successfully deleted: [File] "C:\Documents and Settings\Linda\desktop\live pc help.lnk"



~~~ Folders

Successfully deleted: [Folder] "C:\Documents and Settings\All Users\application data\fighters"
Successfully deleted: [Folder] "C:\Documents and Settings\All Users\application data\w3i"
Successfully deleted: [Folder] "C:\Documents and Settings\Linda\Application Data\systweak"
Successfully deleted: [Folder] "C:\Documents and Settings\Linda\Application Data\updaterex"
Successfully deleted: [Folder] "C:\Program Files\file type helper"





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Tue 02/17/2015 at 12:44:51.54
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~



RESULT eSET

C:\epson14860.exe a variant of Win32/Bundled.Toolbar.Ask.D potentially unsafe application
C:\AdwCleaner\Quarantine\C\Documents and Settings\Linda\Local Settings\Application Data\Babylon\Setup\BExternal.dll.vir a variant of Win32/Toolbar.Babylon.F potentially unwanted application
C:\AdwCleaner\Quarantine\C\Documents and Settings\Linda\Local Settings\Application Data\Babylon\Setup\IECookieLow.dll.vir a variant of Win32/Toolbar.Babylon.E potentially unwanted application
C:\AdwCleaner\Quarantine\C\Documents and Settings\Linda\Local Settings\Application Data\Babylon\Setup\Setup.exe.vir a variant of Win32/Toolbar.Babylon.E potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files\MyPC Backup\DEL_MyPC Backup.exe.vir a variant of MSIL/MyPCBackup.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\WINDOWS\system32\roboot.exe.vir a variant of Win32/Systweak.A potentially unwanted application
C:\Avenger\monitor.exe Win32/AdWare.Loadshop.A application
C:\Avenger\pcwatch.sys Win32/AdWare.Loadshop.E application
C:\Documents and Settings\Linda\My Documents\Computer\flashplayerpro-setup.exe Win32/DownloadAdmin.G potentially unwanted application
C:\Documents and Settings\Linda\My Documents\Downloads\spsetup128.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application
C:\Documents and Settings\Linda\My Documents\Games\bfgtb_2.0.0.20.exe a variant of Win32/Toolbar.Visicom.B potentially unwanted application
C:\Documents and Settings\Linda\My Documents\PC Protection\clean.exe Win32/Toolbar.Conduit potentially unwanted application
C:\Documents and Settings\Linda\My Documents\PC Protection\zaSetupWeb_110_768_000.exe Win32/Toolbar.Conduit potentially unwanted application
C:\Documents and Settings\Linda\My Documents\PC Protection\zaSetupWeb_130_208_000.exe Win32/Toolbar.Conduit potentially unwanted application
C:\Program Files\Defraggler\Defraggler(1).exe Win32/Bundled.Toolbar.Google.D potentially unsafe application
C:\Program Files\Games\bfgbartb\BfgBarDx.dll a variant of Win32/Toolbar.Visicom.B potentially unwanted application
C:\Program Files\Games\bfgbartb\BfgBarTb.dll a variant of Win32/Toolbar.Visicom.A potentially unwanted application


Thanks for yur time and help. Linda S.

#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,923 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:10 PM

Posted 17 February 2015 - 09:59 PM

Ok, that went well and should be improved.

Looks like you use a Proxy and it's messed up.

Can you turn it off
Then clean what ADWcleaner found.

Double click on AdwCleaner.exe to run the tool again. Vista/Windows 7/8 users right-click and select Run As Administrator

  • The tool will start to update the database, please wait a bit.
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer like it did before.
  • After the scan has finished...
  • This time click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S#].txt) will open automatically (where the largest value of # represents the most recent report).
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.
  • >>>>

    Now as to this error
    Could not flush the DNS Resolver Cache: Function failed during execution.

    To fix this problem:

    Open an elevated CMD.EXE window. [  How To ]

    Type the following command and press Enter

  •  

  • REG ADD HKLM\SYSTEM\CurrentControlSet\Services\Dnscache /V Start /T REG_DWORD /F /D 2

  •  

     

    Shutdown and restart the machine.

 

 


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#12 redroset

redroset
  • Topic Starter

  • Members
  • 37 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:California
  • Local time:09:10 AM

Posted 18 February 2015 - 05:50 PM

I did as instructed but have lost my internet connection. This is being sent out on a different computer. Please give instructions.



#13 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,923 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:10 PM

Posted 18 February 2015 - 08:11 PM

For the connection try these...

Please click Start > Run, type inetcpl.cpl in the runbox and press enter.
Click the Connections tab and click the LAN settings option.
Verify if "Use a proxy..." is checked, if so, UNcheck it and click OK/OK to exit.
Now check if the internet is working again.

OR

Go to Start ... Run and type in cmd
A dos Window will appear.
Type in the dos window: netsh winsock reset
Click on the enter key.

Reboot your system to complete the process.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#14 redroset

redroset
  • Topic Starter

  • Members
  • 37 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:California
  • Local time:09:10 AM

Posted 18 February 2015 - 11:53 PM

Thank you. The second instruction allowed me to connect to the internet.

This is what I ran just before losing internet connection:

# AdwCleaner v4.110 - Logfile created 18/02/2015 at 09:37:28
# Updated 05/02/2015 by Xplode
# Database : 2015-02-14.2 [Server]
# Operating system : Microsoft Windows XP Service Pack 3 (x86)
# Username : Linda - HOME
# Running from : C:\Documents and Settings\Linda\My Documents\Downloads\AdwCleaner(1).exe
# Option : Cleaning

***** [ Services ] *****

Service Deleted : YahooAUService

***** [ Files / Folders ] *****

Folder Deleted : C:\Documents and Settings\All Users\Application Data\AVG Secure Search
Folder Deleted : C:\Documents and Settings\All Users\Application Data\PC Drivers HeadQuarters
Folder Deleted : C:\Documents and Settings\All Users\Application Data\driver whiz
Folder Deleted : C:\Documents and Settings\All Users\Application Data\Yahoo! Companion
Folder Deleted : C:\Program Files\PC Drivers HeadQuarters
File Deleted : C:\END
File Deleted : C:\WINDOWS\system32\drivers\netfilter.sys
File Deleted : C:\WINDOWS\system32\MyOSProtect.dll

***** [ Scheduled tasks ] *****


***** [ Shortcuts ] *****

Shortcut Disinfected : C:\Documents and Settings\All Users\Start Menu\Programs\Accessories\System Tools\Scheduled Tasks.lnk

***** [ Registry ] *****

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Activities\Search\ask.com
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{81017EA9-9AA8-4A6A-9734-7AF40E7D593F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{81017EA9-9AA8-4A6A-9734-7AF40E7D593F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D2CE3E00-F94A-4740-988E-03DC2F38C34F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8DCB7100-DF86-4384-8842-8FA844297B3F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D2CE3E00-F94A-4740-988E-03DC2F38C34F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8DCB7100-DF86-4384-8842-8FA844297B3F}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{81017EA9-9AA8-4A6A-9734-7AF40E7D593F}]
Key Deleted : HKCU\Software\systweak
Key Deleted : HKCU\Software\UpdaterEX
Key Deleted : HKCU\Software\DriverSupport
Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Deleted : HKLM\SOFTWARE\CompeteInc
Key Deleted : HKLM\SOFTWARE\systweak
Key Deleted : HKLM\SOFTWARE\SPPDCOM
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Yahoo! Toolbar
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\UpdaterEX
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Advanced Driver Updater_is1
Data Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - *.local

***** [ Web browsers ] *****

-\\ Internet Explorer v8.0.6001.18702


-\\ Mozilla Firefox v35.0.1 (x86 en-US)


-\\ Google Chrome v

[C:\Documents and Settings\Linda\Local Settings\Application Data\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT1166249
[C:\Documents and Settings\Linda\Local Settings\Application Data\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.aol.com/aol/tracking?d_ch=en_US_huffingtonpost&q={searchTerms}&s_it=search_addon
[C:\Documents and Settings\Linda\Local Settings\Application Data\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://en.softonic.com/s/{searchTerms}

-\\ Chromium v

[C:\Documents and Settings\Linda\Local Settings\Application Data\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT1166249
[C:\Documents and Settings\Linda\Local Settings\Application Data\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.aol.com/aol/tracking?d_ch=en_US_huffingtonpost&q={searchTerms}&s_it=search_addon
[C:\Documents and Settings\Linda\Local Settings\Application Data\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://en.softonic.com/s/{searchTerms}

*************************

AdwCleaner[R0].txt - [17430 bytes] - [13/03/2014 20:11:52]
AdwCleaner[R1].txt - [1486 bytes] - [28/03/2014 07:33:14]
AdwCleaner[R2].txt - [4615 bytes] - [17/02/2015 12:12:43]
AdwCleaner[R3].txt - [4256 bytes] - [18/02/2015 09:30:08]
AdwCleaner[S0].txt - [16907 bytes] - [13/03/2014 20:14:32]
AdwCleaner[S1].txt - [1555 bytes] - [28/03/2014 07:42:33]
AdwCleaner[S2].txt - [5016 bytes] - [18/02/2015 09:37:28]

########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [5075 bytes] ##########

#15 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,923 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:10 PM

Posted 19 February 2015 - 11:17 AM

Looks good.. How is it running now?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users